Associate the local directory with an identity provider in Workspace ONE Access so that users in the directory can be authenticated. Add a new built-it identity provider of type Embedded and enable the Password (Local Directory) authentication method on it.


The Password (Local Directory) authentication method must be configured in the Identity & Access Management > Authentication Methods page.

Network ranges of defined IP addresses that local users can use set up.


  1. In the Identity & Access Management tab, click the Identity Providers tab.
  2. Click Add Identity Provider and select Create Built-in IDP.
  3. Enter the following information.
    Option Description
    Identity Provider Name Enter a name for the identity provider. For example, Local Users.
    Users Select the local directory you created.
    Network Select the networks from which this identity provider can be accessed.
    Authentication Methods Select Password (Local Directory).
    KDC Certificate Export You do not need to download the certificate unless you are configuring mobile SSO for Workspace ONE UEM-managed iOS devices.

  4. Click Add.


The identity provider is created and associated with the local directory. Later, you can configure other authentication methods on the identity provider.

You can use the same identity provider for multiple local directories.

What to do next

Create local users and groups. You create local users and groups in the Users & Groups tab in the identity manager console. See Managing Users and Groups in Workspace ONE Access for more information.