Use these steps to connect your external identity provider (IdP) to ZTP and manage access to your ZTP account and services. You will need to complete configuration steps in both your IdP and ZTP.
This section covers the information you need to provide in ZTP based on your IdP type, along with example use cases for integrating specific IdPs.
By default, when you connect your external IdP to ZTP, admins gain access to hosted AppGate ZTNA Collectives without additional authentication or credentials. To give end users access to AppGate ZTNA, you must also connect your external IdP directly to AppGate ZTNA to manage entitlements and other configuration settings.
NOTE
For instructions on connecting an external IdP to AppGate ZTNA Collectives, refer to the AppGate ZTNA Admin Guide or contact your AppGate representative for integration guides for the IdPs that AppGate ZTNA supports.
To connect your external IdP to ZTP:
In the left menu, select Settings, then select Identity Providers. Click Add New in the upper right corner, then select the appropriate provider type.
Complete the on-screen form with the required information for your provider type—either SAML or OIDC. Local (on-premises) and LDAP integrations are not supported.
NOTE
You can use the Bootstrap Identity to access your ZTP account at any time, even after connecting an external IdP.