diff --git a/modules/provider/README.md b/modules/provider/README.md
index 446bf3f..00f373a 100644
--- a/modules/provider/README.md
+++ b/modules/provider/README.md
@@ -30,6 +30,7 @@ No modules.
 
 | Name | Description | Type | Default | Required |
 |------|-------------|------|---------|:--------:|
+| <a name="input_tags"></a> [tags](#input\_tags) | A map of tags to add to OIDC identity provider. | `map(string)` | `{}` | no |
 | <a name="input_thumbprint_list"></a> [thumbprint\_list](#input\_thumbprint\_list) | (Optional) A list of server certificate thumbprints for the OpenID Connect (OIDC) identity provider's server certificate(s). | `list(string)` | <pre>[<br>  "6938fd4d98bab03faadb97b34396831e3780aea1",<br>  "1c58a3a8518e8759bf075b76b750d4f2df264fcd"<br>]</pre> | no |
 
 ## Outputs
diff --git a/modules/provider/main.tf b/modules/provider/main.tf
index 1fa60a9..bdacb3b 100644
--- a/modules/provider/main.tf
+++ b/modules/provider/main.tf
@@ -2,4 +2,5 @@ resource "aws_iam_openid_connect_provider" "github_actions" {
   url             = "https://token.actions.githubusercontent.com"
   client_id_list  = ["sts.amazonaws.com"]
   thumbprint_list = var.thumbprint_list
+  tags            = var.tags
 }
diff --git a/modules/provider/variables.tf b/modules/provider/variables.tf
index d9e878c..de38a78 100644
--- a/modules/provider/variables.tf
+++ b/modules/provider/variables.tf
@@ -10,3 +10,9 @@ variable "thumbprint_list" {
     "1c58a3a8518e8759bf075b76b750d4f2df264fcd"
   ]
 }
+
+variable "tags" {
+  description = "A map of tags to add to OIDC identity provider."
+  type        = map(string)
+  default     = {}
+}