Hiya!

With FusionAuth, identity providers are global objects. You configure them to apply to given applications (via enabling them) using the API or the UI. Applications are scoped to a tenant.

So, if you wanted to make sure that a customer had Okta enabled, you'd do the following:

Set up an Okta OIDC identity provider Create a tenant for the customer Create an application in that tenant Enable the Okta OIDC identity provider for that application

More details here: https://fusionauth.io/docs/v1/tech/identity-providers/

HTH.