Tried to configure vCenter Server 7.0 Identity Provider Federation using Okta as an external identity provider as outlined here:  https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.authentication.doc/GUID-C5E998B2-11.... Currently, vCenter Server supports only Active Directory Federation Services (AD FS) as an external identity provider. I was able to get it to work using Okta for individual users, but not the groups. Getting an error that user doesn't have any permissions. If someone figures out how to pass ad group membership info from Okta to VCenter 7.0, please let me know.