OAuth2.0/JWT

In order to create a new Auth Method that will be able to authenticate using OAuth2.0/JWT, run the following command in your terminal, with the relevant parameters enabled.

CLI

akeyless create-auth-method-oauth2 --name oauth-am --issuer your-issuer-url --jwks-uri your-jwks-uri --audience your-jwt-audience --bound-clients-ids your-restricted-clients-ids

Options:

-n, --name

*Auth Method name

--access-expires[=0]

Access expiration date in Unix timestamp (select 0 for access without expiry date)

--bound-ips

A CIDR whitelist of the IPs that the access is restricted to

--bound-clients-ids

The client's ID that the access is restricted to

--issuer

Issuer URL

--jwks-uri

The URL to the JSON Web Key Set (JWKS) that contains the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server.

--audience[=api://default]

The audience in the JWT

UI

In order to create a new OAuth2.0/JWT authentication credentials, go to Auth Methods tab, click on new and select OAuth2.0/JWT .


Did this page help you?