You can configure a third-party identity provider that is used to authenticate users in the VMware Identity Manager service.

Complete the following tasks before using the administration console to add the third-party identity provider instance.

  • Verify that the third-party instances are SAML 2.0 compliant and that the service can reach the third-party instance.

  • Obtain the appropriate third-party metadata information to add when you configure the identity provider in the administration console. The metadata information you obtain from the third-party instance is either the URL to the metadata or the actual metadata.

  • If just-in-time provisioning is enabled for this identity provider, consider the requirements for SAML assertions. SAML assertions sent by the identity provider must contain certain attributes. See Requirements for SAML Assertions.