CLI
Run the following command in your terminal, with the relevant parameters enabled.
akeyless create-auth-method-oauth2 --name oauth-am --issuer your-issuer-url --jwks-uri your-jwks-uri --audience your-jwt-audience --bound-clients-ids your-restricted-clients-ids
Options:
-n, --name | *Auth Method name |
---|---|
--access-expires[=0] | Access expiration date in Unix timestamp (select 0 for access without expiry date) |
--bound-ips | A CIDR whitelist of the IPs that the access is restricted to |
--bound-clients-ids | The client's ID that the access is restricted to |
--issuer | Issuer URL |
--jwks-uri | The URL to the JSON Web Key Set (JWKS) that contains the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server. |
--audience[=api://default] | The audience in the JWT |
UI
In order to create a new OpenID authentication credentials, go to Auth Methods tab, click on new and select Open ID.
Updated 7 months ago