To access the following settings, click in the menu and select Single Sign-On.

OpenID Providers

OttoLearn supports single sign-on (SSO) for our desktop and mobile apps through OpenID Connect. 

To set up a new SSO provider, open the Identify Providers dropdown and select Create ID Provider



The name you want to use to identify the SSO provider. 

Issuer (Required)

The page users are redirected to for login (SSO login page).  

Client ID (Required)

The ID found in the settings when adding OttoLearn as an application in your provider. 

Advance Settings 


Set whether the provider is available (Active) or unavailable (Inactive) in your account. 

Authorization Endpoint

The endpoint that authenticates the end-user.

Token Endpoint

The endpoint used to obtain an access token and ID token. May also obtain a refresh token (optional). 

UserInfo Endpoint

The endpoint (OAuth 2.0 protected resource) that returns claims about the authenticated end-user. 


The Universal Resource Identifier (URI) that returns the JSON Web Key Set (JWKS) for verifying the ID token.


The JSON Web Key Set (JWKS) used to verify the ID token.

Client Secret

A secret used for extra authentication by some identity providers.

Username Claim

The ID token claim that should be used to find an Otto user.