Configuring the OAuth server - 7.1

Talend Data Catalog Administration Guide

Talend Big Data Platform
Talend Data Fabric
Talend Data Management Platform
Talend Data Services Platform
Talend MDM Platform
Talend Real-Time Big Data Platform
Talend Data Catalog
Administration and Monitoring
Configure the OAuth server to enable the external authentication server using the OAuth 2.0 protocol.

Before you begin

  • As an administrator, you have obtained OAuth 2.0 client credentials from the authorization server.
  • As an administrator, you have configured the authorization server.
  • You have signed in as a user assigned to the Administrators or Security Administrators group.


  1. Go to Tools > Administration from Metadata Manager or to MANAGE from Metadata Explorer.
  2. Select Users.
  3. On the toolbar, select OAuth External Authentication to enable the OAuth external authentication mode.
  4. Click the Configure OAUTH Server icon.
  5. Fill in the following fields.
    Field Action
    Client Id Enter your Client ID.

    Click the User Attribute Mapping button to map the attributes from an external user account to the Talend Data Catalog user attributes, such as Login, Full Name or Email.

    Client Secret Enter your Client Secret.
    Authentication URI Enter the URI on the external authentication server that handles the user authentication. The result is an authorization code, which the application can exchange for an access token and a refresh token.
    Token URI Enter the URI on the external authentication server that exchanges the authentication code for an access token.
    Validation URI Enter the URI on the external authentication server that validates the access token and provides access to the user account
    Scope Enter one or more scope values indicating which parts of the user’s account an access token permits.
    Request Headers Enter extra parameters in the HTTP requests to the external authentication server.
  6. Click Test OAUTH Server.
  7. Click Save.


You can log in to Talend Data Catalog through the authorization server.