Associate the local directory with an identity provider so that users in the directory can be authenticated. Create an identity provider of type Embedded and enable the Password (Local Directory) authentication method on it.

Note: Do not use the Built-in identity provider. Enabling the Password (Local Directory) authentication method on the Built-in identity provider is not recommended.


The Password (Local Directory) authentication method must be configured in the Identity & Access Management > Authentication Methods page.


  1. In the Identity & Access Management tab, click the Identity Providers tab.
  2. Click Add Identity Provider and select Create Built-in IDP.
  3. Enter the following information.
    Option Description
    Identity Provider Name Enter a name for the identity provider.
    Users Select the local directory you created.
    Network Select the networks from which this identity provider can be accessed.
    Authentication Methods Select Password (Local Directory).
    KDC Certificate Export You do not need to download the certificate unless you are configuring mobile SSO for Workspace ONE UEM-managed iOS devices.

  4. Click Add.


The identity provider is created and associated with the local directory. Later, you can configure other authentication methods on the identity provider. For more information about authentication, see "Configuring User Authentication in VMware Identity Manager" in VMware Identity Manager Administration.

You can use the same identity provider for multiple local directories.

What to do next

Create local users and groups. You create local users and groups in the Users & Groups tab in the identity manager console. See "Managing Users and Groups" in VMware Identity Manager Administration for more information.