You need to create IDPs to authenticate the users and determine their group membership.
Note: It is recommended to create a new IDP for new tenants because when you change the default IDP from VC to AD or vice versa from the tca-m:9443 portal, it updates the default IDP associated with the default tenant and removes access to the tenants with existing users configured in vCenter/AD and permissions set in TCA.
Procedure
What to do next
- Edit an IDP - Click the vertical ellipse corresponding to the IDP that you want to edit and click Edit.
Note: When you edit an IDP, all permissions associated with the IDP become invalid. For example, if you switch from AD to vCenter, the previously configured permissions become invalid. Therefore, it is recommended that you verify each of the permissions for the IDP before editing it.
- Delete an IDP - Click the vertical ellipse corresponding to the IDP that you want to delete and click Delete.
Note:
- You can delete an IDP only if all the tenants associated with the IDP are deleted.
- You cannot edit or delete the default IDP. However, a system administrator can edit or delete the IDP configurations by logging in to the Telco Cloud Appliance Manager portal. For more information, see Configure VMware Telco Cloud Automation Manager.