Install and Configure OpenID Connect (OIDC) Client for Drupal 9 in an AFS-based Virtual Host


Drupal 9 CMS, AFS virtual host


How to install and configure OpenID Connect (OIDC) client for Drupal 9 CMS in an AFS-based virtual host.

Before You Begin

  • You will need to obtain OIDC credentials for your site
    • These can be self-provisioned using the OIDC Provisioning and Management (OPaM) tool
    • Provision OIDC service client credentials for your site per the instructions in the following ITS Knowledge Article: How to Provision OIDC Service Client Credentials


  • If you are preparing for a NEW installation of Drupal 9, install Drupal per instructions in the ITS Knowledge Article "Install Drupal 9 CMS in an AFS-Based Virtual Host" and then return here for the remaining steps in the current article.
  1. Install the openid_connect module using composer, as shown on the Releases page on the module site.  See the instructions in step #4 of the knowledge article "Install Drupal 9 CMS in an AFS-Based Virtual Host" to see how to install composer within your {{doc_root}} directory.
cd {{doc_root}}
vendor/bin/composer require 'drupal/openid_connect:^1.2'
  1. Navigate to "Manage → Extend → OpenID Connect", check the check box, and press the "Install" button

Enable OpenID Connect module

  1. After the module is installed, configure it by navigating to “Manage → Configuration → OpenID Connect” in the site administrator dashboard
    1. Configure the plugin using the following settings:

Setting Name

Setting Value

Enabled OpenID Connect clients     Generic
Client ID ${OIDC_ID}
Client Secret     ${OIDC_SECRET}
Authorization Endpoint
Token Endpoint
UserInfo Endpoint
Override registration settings unchecked
Save user claims on every login checked
OpenID buttons display in user login form {site admin preference}
Automatically connect existing users unchecked
  1. Save the updated settings using the 'Save configuration' button at the bottom of the configuration page

Additional Information

Need additional information or assistance? Contact the ITS Service Center.