Skip to content

Configure Asgardeo as an External Identity Provider (IdP)

Asgardeo is an identity-as-a-service (IDaaS) that is designed to create seamless login experiences for your apps. Asgardeo seamlessly integrates with Choreo, offering powerful API access control. This control hinges on the use of API scopes. That is, it enables the restriction of access to a designated group of users. Choreo allows you to bring your user stores in Asgardeo as an external IdP and provide API access control. This document guides you step-by-step to configure Asgardeo AD as your external IdP.


Before you try out this guide, be sure you have the following:

  • Create an Asgardeo application by following the Asgardeo guide: Register a Standard-based Application

  • Find the well-known URL Click on the info tab of your application to view the endpoints and copy the Discovery endpoint.

  • Find the Client ID: Click on the info tab of your application to view the endpoints and copy the Client ID.

Add Asgardeo as an external IdP in Choreo

Follow the steps below to add Asgardeo as an external IdP in Choreo:

  1. Sign in to the Choreo Console at
  2. In the left navigation menu, click Settings.
  3. In the header, click the Organization list. This will open the organization level settings page.
  4. On the Application Security tab, click Identity Providers and then click + Identity Provider.
  5. Select Asgardeo as the Identity Provider.
  6. Provide a name and a description for the IdP.
  7. Enter the Well-Known URL of your Asgardeo instance. You copied this in the prerequisites.
  8. Leave the Apply to all environments checkbox selected. However, if you want to restrict the use of the external IdP to a certain environment, you can select them from the Environments list.
  9. Click Next.