The OpenID Foundation enables implementations of OpenID Connect to be certified to specific conformance profiles to promote interoperability among implementations. The foundation’s certification process utilizes self-certification and a conformance test suite developed by the foundation. Certified implementations can use the “OpenID Certified” certification mark. These resources are available to those considering or seeking certification:
- OpenID Certification Frequently Asked Questions (FAQ)
- OpenID Connect Conformance Profiles
- OpenID Certification Terms and Conditions
- OpenID Certification of Conformance (docx) (PDF)
- Attestation Statement (used with Dynamic OP profile only) (docx) (PDF)
- How to run conformance tests and gather data demonstrating conformance for OPs
- How to request certification after successfully completing conformance testing for OPs
- How to run conformance tests and gather data demonstrating conformance for RPs (in pilot phase)
- How to request certification after successfully completing conformance testing for RPs (in pilot phase)
- OpenID Certification Fee Schedule
- OpenID Certified Mark
- Certified implementations are featured for developers at http://openid.net/developers/certified/.
Certified OpenID Providers
These implementations have been granted certifications for these OpenID Provider conformance profiles:
| Organization | Implementation | Basic OP | Implicit OP | Hybrid OP | Config OP | Dynamic OP |
|---|---|---|---|---|---|---|
| Auth0 | Auth0 | 24-May-2016 | 15-Feb-2017 | 15-Feb-2017 | 24-May-2016 | |
| Dominick Baier & Brock Allen | IdentityServer3 v1.6 | 8-May-2015 | 8-May-2015 | 8-May-2015 | 8-May-2015 | |
| Dominick Baier & Brock Allen | IdentityServer4 | 12-Dec-2016 | 12-Dec-2016 | 12-Dec-2016 | 12-Dec-2016 | |
| CA | CA Single Sign-On 12.7 | 1-Mar-2017 | ||||
| Clareity Security | Identity Provider v6.3.4 | 4-May-2016 | 23-Jun-2016 | 23-Jun-2016 | 23-Jun-2016 | |
| ClassLink | ClassLink OneClick 2015 | 3-Nov-2015 | 3-Nov-2015 | |||
| Connect2id | Connect2id Server 6.1.2a | 3-Jan-2017 | 3-Jan-2017 | 3-Jan-2017 | 3-Jan-2017 | 3-Jan-2017 |
| CZ.NIC | mojeID | 7-Jul-2016 | 31-Jul-2016 | 7-Jul-2016 | 7-Jul-2016 | |
| Deutsche Telekom | Telekom Login | 29-Sep-2015 | 22-Sep-2015 | |||
| ForgeRock | OpenAM 13 | 13-Apr-2015 | 13-Apr-2015 | 13-Apr-2015 | 13-Apr-2015 | |
| Google Federated Identity | 20-Apr-2015 | 21-Apr-2015 | 23-Apr-2015 | 15-Apr-2015 | ||
| Thierry Habart | SimpleIdentityServer V1.0.0 | 9-Dec-2015 | 11-Dec-2015 | |||
| Thierry Habart | SimpleIdentityServer V2.0.0 | 19-Jan-2016 | 19-Jan-2016 | 19-Jan-2016 | 19-Jan-2016 | 19-Jan-2016 |
| Hanscan | Biocryptology OpenID Identity Server 1.3.1 | 31-May-2017 | 31-May-2017 | 31-May-2017 | 31-May-2017 | |
| Roland Hedberg | pyoidc 0.7.7 | 26-Sep-2015 | 26-Sep-2015 | 26-Sep-2015 | 26-Sep-2015 | 26-Sep-2015 |
| Cal Heldenbrand | Spark Platform | 2-Oct-2015 | 2-Oct-2015 | 2-Oct-2015 | 5-Oct-2015 | |
| KSIGN | KSign Access 4.0 | 17-Mar-2017 | ||||
| The Library of Congress | Authentication, Authorization, and Accounting System, version 1.0 | 12-May-2017 | ||||
| Microsoft | ADFS on Windows Server 2016 | 13-Sep-2015 | 13-Sep-2015 | 7-Apr-2015 | ||
| Microsoft | Azure Active Directory | 8-Apr-2015 | ||||
| NEC | NC7000-3A-OC | 7-Mar-2016 | ||||
| Nomura Research Institute | phpOIDC | 10-Apr-2015 | 10-Apr-2015 | 10-Apr-2015 | 10-Apr-2015 | 10-Apr-2015 |
| Nomura Research Institute | Uni-ID | 10-Apr-2015 | ||||
| NTT Software Corporation | TrustBind/Federation Manager | 26-Jan-2017 | 26-Jan-2017 | 26-Jan-2017 | ||
| PayPal | Login with PayPal | 15-Apr-2015 | ||||
| OGIS-RI | ThemiStruct Identity Platform v1.1.0 | 7-Oct-2016 | 7-Oct-2016 | 7-Oct-2016 | ||
| OGIS-RI | ThemiStruct Identity Platform v1.3.0 | 28-Apr-2017 | 25-May-2017 | 28-Apr-2017 | ||
| Okta | Okta OP | 25-May-2016 | 26-May-2016 | 26-May-2016 | 26-May-2016 | |
| Peercraft ApS | Peercraft | 19-Jan-2016 | 19-Jan-2016 | 19-Jan-2016 | 19-Jan-2016 | 19-Jan-2016 |
| Ping Identity | PingFederate | 10-Apr-2015 | 10-Apr-2015 | 10-Apr-2015 | 9-Apr-2015 | |
| Privacy Vaults Online (PRIVO) | PRIVO-Lock | 23-Oct-2015 | 25-Nov-2015 | |||
| Red Hat | Keycloak 2.3.0 | 31-Oct-2016 | 31-Oct-2016 | 31-Oct-2016 | 31-Oct-2016 | 31-Oct-2016 |
| Justin Richer | MITREidConnect | 13-May-2015 | 13-May-2015 | 13-May-2015 | ||
| Salesforce | Summer 2015 Release | 14-May-2015 | ||||
| Michael Schwartz | Gluu Server 2.3 | 2-Jul-2015 | 2-Jul-2015 | 8-Jul-2015 | 2-Jul-2015 | 2-Jul-2015 |
| SecureAuth | SecureAuth IdP 8.2 | 25-Feb-2016 | 25-Feb-2016 | 25-Feb-2016 | 7-Mar-2016 | |
| Filip Skokan | node oidc-provider | 2-Jan-2017 | 2-Jan-2017 | 2-Jan-2017 | 2-Jan-2017 | 2-Jan-2017 |
| Symantec | NSL 2016.4.0.16 | 13-Oct-2016 | 13-Oct-2016 | |||
| University of Chicago | OIDC OP Overlay for Shibboleth IdP v3.2.1 version 1.0 | 25-Feb-2016 | 25-Feb-2016 | |||
| Verizon | VZConnect 1.9 | 21-Dec-2016 | ||||
| ViewDS | Cobalt V1.0 | 28-Jan-2016 | 2-Feb-2016 | 28-Jan-2016 | ||
| Matias Woloski | Auth0 | 6-Feb-2016 | 8-Feb-2016 | |||
| Yahoo! Japan | Yahoo! ID Federation v2 | 7-Dec-2016 | 7-Dec-2016 | 7-Dec-2016 | 7-Dec-2016 |
Certified Relying Parties
These implementations have been granted certifications for these Relying Party conformance profiles:
| Organization | Implementation | Basic RP | RP Implicit | Hybrid RP | Config RP | Dynamic RP |
|---|---|---|---|---|---|---|
| Brock Allen | oidc-client-js 1.3 | 4-Feb-2017 | 7-Feb-2017 | |||
| Dominick Baier | IdentityModel.OidcClient 2.0 | 27-Jan-2017 | 6-Feb-2017 | |||
| Thierry Habart | SimpleIdentityServer V1.0.1 | 17-Jan-2017 | 17-Jan-2017 | 17-Jan-2017 | 17-Jan-2017 | 17-Jan-2017 |
| Janrain | IDPD 2.6.0 | 7-Feb-2017 | ||||
| Roland Hedberg | pyoidc 0.9.4 | 20-Dec-2016 | 20-Dec-2016 | 20-Dec-2016 | 20-Dec-2016 | 20-Dec-2016 |
| Karlsruher Institut für Technologie, SCC | oidcc 1.0.1 | 2-Feb-2017 | 2-Feb-2017 | |||
| Nomura Research Institute | phpOIDC 2016 Winter | 7-Feb-2017 | 7-Feb-2017 | 7-Feb-2017 | 7-Feb-2017 | 7-Feb-2017 |
| Nov Matake | openid_connect rubygem v1.0.3 | 20-Jan-2017 | ||||
| Ping Identity | PingAccess 4.2.2 | 26-Jan-2017 | ||||
| Ping Identity | PingFederate 8.3.1 | 17-Jan-2017 | 31-Jan-2017 | |||
| Filip Skokan | node openid-client ^1.3.0 | 15-Dec-2016 | 15-Dec-2016 | 15-Dec-2016 | 15-Dec-2016 | 15-Dec-2016 |
| Hans Zandbelt | mod_auth_openidc 2.1.2 | 13-Dec-2016 | 13-Dec-2016 | 13-Dec-2016 |
These certifications are also registered by OIXnet at http://oixnet.org/openid-certifications/.