When you configure VMware Cloud Director to function as an OIDC identity provider proxy, VMware Cloud Director generates a pair of OIDC keys with which it signs the JWT tokens that it issues.
Tip: To view the
VMware Cloud Director key requirements, navigate to
.
The relying parties that are using VMware Cloud Director as an OIDC proxy server can retrieve the provider configuration values, including the list of available public keys from the JWKS endpoint listed at {{hostname}}/oidc/.well-known/openid-configuration
.
Prerequisites
Verify that your role includes the OIDC Server: Manage Settings right.
Add an OIDC Proxy Key Set Using Your VMware Cloud Director
You can manually add an OIDC proxy key set to VMware Cloud Director.
Procedure
Set a New OIDC Proxy Key Set As Active Using Your VMware Cloud Director
You can use the VMware Cloud Director UI to select a new active OIDC proxy key.
Prerequisites
- Verify that your role includes the OIDC Server: Manage Settings right.
- Verify that you uploaded the key set that you want to make active.
Procedure
Delete an OIDC Proxy Key Set From Your VMware Cloud Director
If an OIDC key set is no longer in use, you can delete it.
Prerequisites
- Verify that your role includes the OIDC Server: Manage Settings right.