Step 9: Configure OCI IAM Identity Domain Policies

Configure Identity Provider (IdP) Policies

  1. Navigate to the Identity Domain Overview page and click the Federation tab under the Identity Domain.
  2. Under Identity provider policies, click the Default Identity Provider policy to open it.
  3. Click the Identity Provider Rules tab. Click the Ellipsis (three dots) next to the Default IDP Rule and select Edit IDP Rule.
  4. Click the Assign Identity Providers field and then select the Entra ID Identity provider to add it to the list.
  5. Click Save Changes.

Configure Single Sign-on (SSO) Policies

  1. Navigate to the Identity Domain Overview page and click Domain Policies.
  2. Under Single Sign-on policies, click the Default Sign-on policy to open it.
  3. Click the Sign-on Rules tab. Click the Ellipsis (three dots) next to the Default Sign-on Rule and select Edit Sign-on Rule.
  4. Click the Authenticating Identity Providers field and then select the Entra ID Identity provider to add it to the list.
  5. Click Edit Sign-on Rule to save the changes.

Parent topic: Steps to Configure Identity Federation in OCI IAM Identity Domain