diff --git a/authelia/config/configuration.yml b/authelia/config/configuration.yml
index 43f7055..6984646 100644
--- a/authelia/config/configuration.yml
+++ b/authelia/config/configuration.yml
@@ -18,6 +18,25 @@ log:
 totp:
   issuer: 'authelia.com'
 
+identity_providers:
+  oidc:
+    clients:
+      - client_id: 'pangolin'
+        client_name: 'Pangolin'
+        client_secret: '$pbkdf2-sha512$310000$LJzmdVn/YkSK7t0WxNXs2A$v7nxRYBRJdqmJ/k4Q2SWlp/7m5rsyEtNw9ez9rf7tEYi48ezYChXqCK.VHC/v7tu3Liro.ipy4Uv.euLUfLc7w'  # The digest of 'insecure_secret'.
+        public: false
+        authorization_policy: 'two_factor'
+        require_pkce: true
+        pkce_challenge_method: 'S256'
+        redirect_uris:
+          - '<provided by pangolin>'
+        scopes:
+          - 'openid'
+          - 'profile'
+          - 'email'
+        userinfo_signed_response_alg: 'none'
+        token_endpoint_auth_method: 'client_secret_basic'
+
 identity_validation:
   reset_password:
     jwt_secret: '2b8a78f3ac1784ef6aab3899c663e1010c60d3a9de694550879da349fe222923'