Single Sign-On (SSO) enables users to access multiple applications or websites using a single set of credentials. Instead of logging in separately to each service, users authenticate once through a trusted Identity Provider (IdP), which then verifies their identity across connected platforms.
This technote outlines the integration of HPE GreenLake SSO with Microsoft Entra ID as the Identity Provider (IdP) for role-based access control for the HPE GreenLake Cloud Platform (GLCP) and its integrated services, such as HPE Aruba Central. GLCP’s federated SSO capabilities have recently been updated, and this document highlights the key enhancements and implementation steps.
The scenario covers two users, admin1 and ops1, each assigned to a different Entra ID user groups. Both users will authenticate via SSO to access the Aruba Central application within GLCP, but their permissions will differ based on group membership are
- ops1 will be granted read-only access, enabling visibility into Aruba Central without the ability to modify configurations.
- admin1 will receive administrative privileges limited to a specific configuration group, allowing changes only to devices within that group.
Solutions Tech Lab 
Leave a comment