oidc create

  • Updated on Jan 31, 2026
  • Published on Jan 28, 2026
  • 1 minute(s) read
Prev Next

This command creates an OIDC provider.

Usage

oidc create --name NAME
            --discovery-url URL
           [--user-jwt-attribute ATTRIBUTE]
           [--enable-verify-peer]
           [--disable-verify-peer]
           [--certificate]

Required Parameters

--name NAME

Specifies NAME as the name of the OIDC provider.

--discovery-url URL

Specifies the discovery URL for the OIDC provider. The URL points to a JSON file containing configuration information about the provider.

Options

--user-jwt-attribute ATTRIBUTE

Specifies ATTRIBUTE as the the JWT user identifier field in audit logs. Examples: name, email

--enable-verify-peer

Requires certificate verification of OIDC provider (peer). The provider is only trusted to handle requests after the certificate is verified.  Uses the certificate in the --certificate field.

--disable-verify-peer

Disables requirement for certificate verification of the provider. The provider is trusted without certificate verification.

--certificate

Specifies CERTIFICATE as the certificate for the OIDC provider, as a string.

Example

This example creates an OIDC provider named "oidc-for-vast".

vcli: admin> oidc create --name oidc-for-vast --discovery-url "https://myoidc.com/discovery.json"
Related articles
  • oidc modify
    VAST Cluster > Version 5.4 > VAST Cluster 5.4 CLI Command Reference > oidc commands
  • oidc delete
    VAST Cluster > Version 5.4 > VAST Cluster 5.4 CLI Command Reference > oidc commands
  • OIDC Provider
    VAST Cluster > Version 5.4 > VAST Cluster 5.4 Administrator's Guide > Managing Users > Providers