Add OAuth client using included provider

Built-in providers offer streamlined setup for popular services including Google, GitHub, Slack, and Salesforce. These providers have pre-configured authorization server endpoints and provider-specific parameters to reduce development effort.

To add an OAuth client using an included provider

Open the AgentCore Identity console.
In the Outbound Auth section, choose Add OAuth client / API key, and then select Add OAuth client.
For Name, you can either use the auto-generated name or enter your own descriptive name to help you identify this OAuth client in your account. Use alphanumeric characters, hyphens, and underscores only, with a maximum length of 50 characters.
For Provider, choose Included provider.
Choose your identity provider from the available options (Google, GitHub, Microsoft, Salesforce, or Slack).
In the Provider configurations section, enter your client credentials:
1. For Client ID, enter the unique identifier you received when registering your application with the identity provider.
2. For Client secret, enter the confidential key associated with your client ID. AgentCore Identity securely stores this value for authentication.
Choose Add OAuth Client.

After creating the OAuth client, AgentCore Identity provides an ARN that you can reference in your agent code to request authentication tokens without embedding sensitive credentials in your application. You can find this ARN in the properties page of the OAuth client (Choose the client name in the Outbound Auth section).

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Configure an OAuth client

Add OAuth client using custom provider