External Providers Management

External Providers Management controls third-party identity connections such as enterprise or social login providers.

Admin external providers screenshot

Where it helps

Use this feature to connect outside identity systems while keeping tenant ownership, user mapping, and policy enforcement inside TokenIDP.

Workflow

  1. Open External Providers Management.
  2. Create a new provider entry.
  3. Enter issuer, client, secret, and callback details.
  4. Map claims and enable the provider.
  5. Test login in a non-production environment first.
Edit social sign-in provider

Example

Add an enterprise OpenID Connect provider for one Tenant while leaving other Tenants on local login only.

Common Pitfalls

  • Enabling a provider globally when it should be tenant-scoped.
  • Not validating claim mapping before rollout.

Troubleshooting

  • If sign-in succeeds at the external provider but fails on return, inspect callback configuration, claim mapping, and tenant routing.