Hello, thanks for your question. Dogtag does not support any external or federated identity providers out of the box. Most of the bits required to do this are there, if you can put Dogtag behind a trusted reverse proxy that can perform the authentication and populate the request environment with data about the user, e.g. Apache httpd with mod_auth_mellon (SAML) or mod_auth_openidc (OpenID Conenect). But these are not officially supported configurations and there is no documentation. If you have a Red Hat support subscription and are clear about your requirements, you can raise a support case or file an RFE ticket. Otherwise, feel free to be as clear as you can about your requirements here, and we may be able to give you some pointers. Thanks, Fraser On Mon, Aug 02, 2021 at 08:22:55AM -0000, amaury.siharath(a)gmail.com wrote: