diff --git a/api/strategies/openidStrategy.js b/api/strategies/openidStrategy.js
index 49ed2cb8eb..ea925da3ac 100644
--- a/api/strategies/openidStrategy.js
+++ b/api/strategies/openidStrategy.js
@@ -786,7 +786,9 @@ async function setupOpenId() {
 
     if (clientSecret) {
       clientMetadata.client_secret = clientSecret;
-      clientMetadata.token_endpoint_auth_method = 'client_secret_post';
+      if (shouldGenerateNonce) {
+        clientMetadata.token_endpoint_auth_method = 'client_secret_post';
+      }
     } else if (usePKCE) {
       clientMetadata.token_endpoint_auth_method = 'none';
     }