Not sure I understand your request here. PDC is already coming with SAML SSO login, you do not have to anything except just pointing your monitored pega instances to the given URL. Are you talking about your own hosted AES (old name for PDC)? Please elaborate.
One more point to add here that the current SSO with PDC is working only for PDN accounts, so I have to login to my PDN account and only then I can launch the PDC URL. However in our requirement we will login in our Pega internal app and it should be enough to launch PDC without asking to login again.
this is quite different requirement as Pega PDC is completely independent of your own internal Pega apps. You essentially asks Pega PDC grants access to operators not in PDC. Suggest you contact PDC team for potential enhancement.
We need this enhancement since PDN account can be accessed globally, hence we would like to limit the PDC access to only internal users within the organization. Also without this enhancement we may have a security violation at times when users leaving the organization would still have their PDN accounts active to access PDC until we revoke their access.
We have started "BYOSSO" - configuring PDC to work with your own SAML IDP. This is not customer-configurable at present. The PDC team will work with you to set up the credentials and the redirection. Are you using LDAP authentication or SAML currently? Is your SAML IDP accessible from public internet? What is your PDC Tenant ID / code?
To all on the thread … yes, PDC already has two SAML SSO authentication options enabled by default for all tenants. (1) Integration with Pega Community / My Support Portal (2) Integration with Pega rpega.com active directory [for Pega Support and other teams to assist customers]. We can configure additional customer-specific SAML authentication services.
One note - "BYOSSO" is new and we're not SAML experts, so we'd rather you start with a known working SAML authentication service.