A vCloud Director tenant organization can define an identity provider that it shares with other applications or enterprises. Users authenticate to the identity provider to obtain a token that they can then use to log in to the organization. Such a strategy can enable an enterprise to provide access to multiple, unrelated services, including vCloud Director, with a single set of credentials, an arrangement often referred to as single sign-on.
About Identity Providers
- An organization can define an external identity provider that supports OAuth authentication, as defined in RFC 6749 ( https://openid.net/specs/openid-connect-core-1_0.html).
- An organization can define an external identity provider that supports the Security Assertion Markup Language (SAML) 2.0 standard.
- The integrated identity provider is a vCloud Director service that authenticates users who are created locally or imported from LDAP.