Parameter:
OIDC_LOGIN_ENABLE_REDIRECTShort description: Enables or disables server-wide redirects to the OIDC provider on web login.
0 switches off the automatic redirect.Profile
Parameter | OIDC_LOGIN_ENABLE_REDIRECT |
Category | Security / TLS |
Component | Server |
Available since | 12.0.2 |
Supported versions | 12.0, 14.0, 14.5, 14.5.1 |
GUI equivalent | notes.ini only (no GUI) |
Possible values | 0 = redirect disabled, 1 = redirect enabled (default) |
Description
When OIDC login is configured for a web site, Domino automatically redirects unauthenticated requests to the configured OIDC provider. For maintenance or troubleshooting phases – for example, when the IdP is unreachable and classic Domino login (Basic Auth, session auth) should be used instead – the redirect can be disabled server-wide with
OIDC_LOGIN_ENABLE_REDIRECT=0. The OIDC configuration itself is preserved and can be reactivated after the problem is fixed.Example configuration
OIDC_LOGIN_ENABLE_REDIRECT=0
Notes & pitfalls
- A useful emergency switch when the IdP fails – users can log in the classic way in the meantime.
- Takes effect after an HTTP restart.
- Acts server-wide – for more granular control, use Internet Sites / Web SSO configuration.
- Set back to
1for ongoing operation, otherwise users miss out on SSO entirely.