Register a Web App for ACCESS Auth

ACCESS uses CILogon COmanage for OpenID Connect (OIDC) web application registration and management. Please contact help@cilogon.org (Subject: ACCESS OIDC client management) to request an invitation. In your email message, please specify your ACCESS affiliation:

• RAMPS (Track 1)
• MATCH (Track 2)
• CONECT (Track 3)
• MMS (Track 4)
• OpenCI (ACO)
• Service Provider

You will receive an email with a link to register for CILogon COmanage. During the enrollment flow, we suggest you authenticate with your institutional/university identity provider (IdP) rather than the ACCESS CI IdP.

After you have registered with CILogon COmanage, see COmanage OIDC Clients for information on registering and managing OIDC clients.

When registering your client, we recommend selecting “Use a Named Configuration” then choosing “ACCESS OIDC client configuration v1”. This configuration causes the ACCESS ID with @access-ci.org to be returned as the OIDC sub claim in the id_token. To use this configuration, be sure to configure your client to request the following scopes: openid, email, profile, org.cilogon.userinfo

To update your client registration later, visit https://registry.access-ci.org/ and log in using the institutional/university identity provider (IdP) that you previously used for enrollment. Select “OIDC Clients” from the left menu, then click the “Edit” button next to the client ID of the client configuration you wish to change. If you do not see the “OIDC Clients” menu item, please contact help@cilogon.org.