diff --git a/roles/ipsilon/files/oidc_scopes/beaker.py b/roles/ipsilon/files/oidc_scopes/beaker.py
new file mode 100644
index 0000000000..5b4009e039
--- /dev/null
+++ b/roles/ipsilon/files/oidc_scopes/beaker.py
@@ -0,0 +1,14 @@
+from __future__ import absolute_import
+
+from ipsilon.providers.openidc.plugins.common import OpenidCExtensionBase
+
+
+class OpenidCExtension(OpenidCExtensionBase):
+    name = 'beaker'
+    display_name = 'Beaker Jobs'
+    scopes = {
+        'https://beaker-project.org/oidc/scope': {
+            'display_name': 'Full CRUD permissions to your beaker account',
+            'claims': [],
+        },
+    }
diff --git a/roles/ipsilon/tasks/main.yml b/roles/ipsilon/tasks/main.yml
index d80d66cb13..5f1c7d4cb5 100644
--- a/roles/ipsilon/tasks/main.yml
+++ b/roles/ipsilon/tasks/main.yml
@@ -33,6 +33,7 @@
   with_items:
   - account-scopes
   - mbs
+  - beaker
   notify:
   - reload apache
   tags:
diff --git a/roles/ipsilon/templates/configuration.conf b/roles/ipsilon/templates/configuration.conf
index 65e52112ec..4270d3975b 100644
--- a/roles/ipsilon/templates/configuration.conf
+++ b/roles/ipsilon/templates/configuration.conf
@@ -25,7 +25,7 @@ global enabled=persona,openid,saml2,openidc
 {% if env == "production" %}
 openidc enabled extensions=fedora-account,mbs
 {% else %}
-openidc enabled extensions=fedora-account,mbs
+openidc enabled extensions=fedora-account,mbs,beaker
 {% endif %}
 
 {% if env == 'staging' %}