diff --git a/main.tf b/main.tf
index 3a9f554..82b5211 100644
--- a/main.tf
+++ b/main.tf
@@ -131,7 +131,9 @@ resource "aws_ec2_client_vpn_endpoint" "default" {
   client_cidr_block      = var.cidr_block
 
   authentication_options {
-    type                       = "certificate-authentication"
+    type                            = var.type
+    saml_provider_arn               = var.saml_arn
+    self_service_saml_provider_arn  = var.self_saml_arn
     root_certificate_chain_arn = join("", aws_acm_certificate.root.*.arn)
   }
 
diff --git a/variables.tf b/variables.tf
index 467fdb7..77aea0b 100644
--- a/variables.tf
+++ b/variables.tf
@@ -86,4 +86,22 @@ variable "network_cidr" {
   type        = list(any)
   default     = []
   description = "Client Network CIDR"
+}
+
+variable "type" {
+  type        = string
+  default     = "certificate-authentication"
+  description = "The type of client authentication to be used. "
+}
+
+variable "saml_arn" {
+  type        = string
+  default     = ""
+  description = "The ARN of the IAM SAML identity provider. "
+}
+
+variable "self_saml_arn" {
+  type        = string
+  default     = ""
+  description = "The ARN of the IAM SAML identity provider for the self service portal. "
 }
\ No newline at end of file