Creating identity providers

Setting up identity providers for your organization is an important step to automatically map user and AI tool access to enterprise permissions. Some sample identity providers include Okta, Microsoft Entra ID, Auth0, Ping Identity, Google Workspace, and OIDC.

Before you begin, define the correct callback URI in your identity provider app. For example, if you want to use the US platform instance, set your callback URI to https://us.bc.boomi.com/oauth/identityprovider/oauth/callback.

note

Users will still need the proper credentials and permissions to perform an action. The Large Language Model (LLM) will not respond if they do not have access due to their role. Some connectors also allow API keys to be entered for service-level users to grant higher authority.

If you have not created an identity provider, you will be prompted to create one.

To create an identity provider:

1. Select the Identity Providers tab on the Connect administration page. The Add Identity Provider page is displayed.

2. Enter the following required fields to define your identity provider:

   • Name
   • Allowed Audience — The audience value expected in incoming tokens from this provider.
   • Well-Known URL — The OpenID Connect discovery document URL for this provider.
   • Client ID
   • Client Secret

3. Click Add Provider to save your new identity provider.

4. (Optional) If you want to target different user groups with distinct permissions, create additional IDP roles for more granular control.

Refer to Microsoft Entra ID setup for detailed instructions.