IDP(A) is authenticated the user. So IDP(A) has to take care of the SSO.
What is IDP(A) is that AD FS? Ping? Azure AD? Is IDP(A) managed by the partners? Where are the actual accounts?
And how are the partners users connected to IDP(A)? From a machine a managed par the partner? F