Release Date: December 4, 2025
The SSO Integrations area in ampEducator has been expanded to provide greater flexibility and security when connecting external authentication systems. Institutions can now configure both External Identity Providers (OAuth) and Connected Applications (OIDC) directly within
Institution Config ➜ General ➜ SSO Integrations.
External Identity Providers (OAuth)
This section allows institutions to connect external OAuth 2.0 or OpenID Connect services, enabling users to log in to ampEducator using existing credentials such as Google or Microsoft.
Setup has been simplified with support for discovery URLs, automatic endpoint population, and the ability to test connections directly from the configuration page. Administrators can now easily manage multiple login providers from one centralized location.
Connected Applications (OIDC)
A new Connected Applications section has been added, allowing ampEducator to serve as an identity provider for external systems—such as Moodle—using OpenID Connect standards.
Each connected application includes its own Client ID, Secret, and list of redirect URIs. Administrators can also manually rotate signing keys at any time under More Actions ➜ Rotate Keys to maintain security and compliance.
These updates give institutions greater control over authentication and simplify single sign-on management across platforms.
