--- title: Creating an OpenID Connect policy description: Configure an OpenID Connect (OIDC) policy to define OIDC policies for client access to attributes mapped according to OpenID specifications. component: pingaccess version: 9.0 page_id: pingaccess:token_providers:pa_creating_an_oidc_policy canonical_url: https://docs.pingidentity.com/pingaccess/9.0/token_providers/pa_creating_an_oidc_policy.html revdate: March 27, 2024 section_ids: about-this-task: About this task steps: Steps next-steps: Next steps --- # Creating an OpenID Connect policy Configure an OpenID Connect (OIDC) *(tooltip: \
\

An authentication protocol built on top of OAuth that authenticates users and enables clients (relying parties) of all types to request and receive information about authenticated sessions and users. OIDC is extensible, allowing clients to use optional features such as encryption of identity data, discovery of OpenID Providers (OAuth authorization servers), and session management.\

\
)* policy to define OIDC policies for client access to attributes mapped according to OpenID specifications. ## About this task For more information, see [Configuring OpenID Connect policies](https://docs.pingidentity.com/pingfederate/latest/administrators_reference_guide/pf_configuring_oidc_policies.html). ## Steps 1. Go to **Applications → OAuth → OpenID Connect Policy Management**. 2. Click **Add Policy**. 3. In the **Policy ID** field, enter an Policy ID of your choosing. For example, `OIDC`. 4. In the **Name** field, enter a name of your choosing. For example, `OIDC`. 5. From the **Access Token Manager** list, select the access token you created in [Configuring an access token mapping](pa_configuring_an_access_token_mapping.html). For example, **GeneralAccessToken**. 6. Click **Next**. 7. On the **Attribute Contract** tab, delete all items beneath the **Extend the Contract** heading. 8. Click **Next** until the **Contract Fulfillment** tab is displayed. 9. From the **Source** list, select **Access Token**. 10. From the **Value** list, select **username**. 11. Click **Next** until the **Summary** tab is displayed. Click **Save**. 12. In the **Action** column for the policy you created, if the policy is not already listed as the default, click **Set as Default**. ## Next steps [Create a resource server client](pa_creating_a_resource_server.html).