Single identity provider
In this scenario, HCL Mosaic identity services are integrated with a single customer-managed identity provider service, against which all of your end users who will access the solution can be authenticated. Ideally, there would be separate development/test and production instances of the service, with appropriate user populations defined in each.
The production end user audience may be internal employees, accessing an Intranet-focused site, content and applications, it may be an external customer audience, or even a combination.
In this case, each Mosaic environment is configured with a relationship to the appropriate identity provider as illustrated in the diagram below:
