To set up an OpenID Connect provider for your Asset Bank's SSO you will need to create an client app integration in your Identity Provider.

Before getting started make get it touch with customer support so that we can enable this feature for you.

1. Collecting information for your App Integration
   
   Copy you Asset Bank Redirect URI for your OIDC application.
   Head over the "Admin > Settings" page and select the "OIDC" tab:
   
   On the same page you will find other details required to configure the application, such as Response Type and Scope.
   
   
2. Creating an App Integration
   
   On your Identity Provider dashboard, find the functionality which will allow to a custom application.
   In this guide we will use Okta as example but of course any provider supporting OIDC will do.
   Create a new app integration and select "OIDC" as Sign-in method and "Web Application" as Application Type.
   
   
   When creating the App make sure to select these options and enter these values:
   Grant type: Authorization Code
   Sign-in redirect URI: the redirect URI collected in step 1.
   Scopes (consult your provider's knowledge base if not available): "openid", "profile" and "email"
   Client authentication: Client secret
   
   Once the App has been created copy the Client ID and Secret values for the next step.
   
   
3. Complete the configuration in Asset Bank
   
   Head over the "Admin > Settings > OIDC" and click Edit these settings and fill in the details from your newly created App.
   
   The Authority URL is the base part of your Metadata URI, usually found in your Authorization Server page
   (e.g. https://my-company.okta.com/oauth2/default/.well-known/oauth-authorization-server)