Skip to content Skip to site navigation Skip to service navigation

Stanford OpenID Connect

OpenID Connect

Stanford University IdPs support OpenID Connect, which can be used for the following use cases:

Confidential clients:

The OpenID Connect protocol is provided by the same Shibboleth IdP instance that also supports SAML.

Some common features with both OIDC and SAML include

  • Usage of the same underlying user accounts and attribute information
  • A user will see the same login user interface
  • All applications are required to use 2-step authentication
  • Cardinal Keys will work for both

There are also some differences:

  • Some attribute names(claims) are different
  • OIDC relying party has a password component which expires in a year
  • OIDC requires user consent for releasing attributes (claims)



Last modified September 6, 2023