This topic describes how to add an external identity provider to your Single Sign‑On for VMware Tanzu Application Service service plan.
Log in to the SSO Operator Dashboard at
https://p-identity.SYSTEM-DOMAIN as a Plan Administrator.
Select your plan and click Manage Identity Providers on the dropdown.
Click New Identity Provider to create a new identity provider.
To create a new identity provider, perform the following steps:
Specify Identity Provider Metadata from step 11 of the Configure Okta as an Identity Provider topic.
(Optional) Under Advanced SAML Settings, click Attribute Mappings to enter the mappings.
Click Create Identity Provider.
Click Resource Permissions.
Click New Permissions Mapping and perform the following steps:
Navigate to the identity provider list.
Click Group Whitelist and enter the group names from the external identity provider that should be propagated in the ID token.