Configuring Single Sign-on from the VMware Identity Manager Service to Worktap

Similar documents
Configuring Single Sign-on from the VMware Identity Manager Service to Dropbox

Configuring Single Sign-on from the VMware Identity Manager Service to WebEx

Configuring Single Sign-on from the VMware Identity Manager Service to AirWatch Applications

Configuring Single Sign-on from the VMware Identity Manager Service to Amazon Web Services

Configuring Single Sign-on from the VMware Identity Manager Service to ServiceNow

Configuring Single Sign-On from the VMware Identity Manager Service to Office 365

VMware Identity Manager Integration with Active Directory Federation Services 2.0

ThinPrint GPO Configuration for Location-Based Printing

Integrating VMware Horizon Workspace and VMware Horizon View TECHNICAL WHITE PAPER

INTEGRATION GUIDE. DIGIPASS Authentication for VMware Horizon Workspace

Explore the VMware Horizon 6 Toolbox Auditing and Remote Assistance Capabilities

Setting Up Resources in VMware Identity Manager

Reconfiguration of VMware vcenter Update Manager

VMware Identity Manager Administration

Dell One Identity Cloud Access Manager How to Configure for SSO to SAP NetWeaver using SAML 2.0

Step-by-Step guide for SSO from MS Sharepoint 2010 to SAP EP 7.0x

An overview of configuring WebEx for single sign-on. To configure the WebEx application for single-sign on from the cloud service (an overview)

An overview of configuring WebEx for single sign-on. To configure the WebEx application for single-sign on from the cloud service (an overview)

Offline Data Transfer to VMWare vcloud Hybrid Service

Getting Started with Database-as-a-Service

Configuring. SugarCRM. Chapter 121

VMware vcenter Configuration Manager and VMware vcenter Application Discovery Manager Integration Guide

Helping Customers Move Workloads into the Cloud. A Guide for Providers of vcloud Powered Services

This chapter describes how to use the Junos Pulse Secure Access Service in a SAML single sign-on deployment. It includes the following sections:

VMware vcenter Configuration Manager SQL Migration Helper Tool User's Guide vcenter Configuration Manager 5.6

VMware Workspace Portal Reference Architecture

VMware Identity Manager Administration

VMware vcenter Support Assistant 5.1.1

Using the vcenter Orchestrator Plug-In for Microsoft Active Directory

For details about using automatic user provisioning with Salesforce, see Configuring user provisioning for Salesforce.

Integration with Active Directory

Configuring Salesforce

HOTPin Integration Guide: Salesforce SSO with Active Directory Federated Services

vrealize Air Compliance OVA Installation and Deployment Guide

Request Manager Installation and Configuration Guide

Director and Certificate Authority Issuance

Quick Start - Virtual Private Cloud in Germany and Australia

User Management Tool 1.5

vcloud Director User's Guide

Upgrading Horizon Workspace

SP-initiated SSO for Smartsheet is automatically enabled when the SAML feature is activated.

Active Directory Solution 1.0 Guide

Zendesk SSO with Cloud Secure using MobileIron MDM Server and Okta

Integration Guide. SafeNet Authentication Service. Using SAS as an Identity Provider for Salesforce

DEPLOYMENT GUIDE. SAML 2.0 Single Sign-on (SSO) Deployment Guide with Ping Identity

CA Nimsoft Service Desk

To set up Egnyte so employees can log in using SSO, follow the steps below to configure VMware Horizon and Egnyte to work with each other.

Installation and Configuration Guide

Using the vcenter Orchestrator Plug-In for vsphere Auto Deploy 1.0

Connected Data. Connected Data requirements for SSO

Installing and Configuring vcloud Connector

How to Migrate Citrix XenApp to VMware Horizon 6 TECHNICAL WHITE PAPER


Microsoft Office 365 Using SAML Integration Guide

VMware vsphere 5.0 Evaluation Guide

Management Pack for vrealize Infrastructure Navigator

Configuring Multiple ACE Management Servers VMware ACE 2.0

VMware Horizon Mobile Secure Workplace User Installed Applications Support with Liquidware Labs HOW-TO GUIDE

Deployment Guide. Deploying F5 BIG-IP Global Traffic Manager on VMware vcloud Hybrid Service

Configuring. SuccessFactors. Chapter 67

Kaltura Video Plugin for Jive Deployment Guide. Version: 1.0

Configuring SuccessFactors

WatchDox Administrator's Guide. Application Version 3.7.5

VMware Virtual Desktop Manager User Authentication Guide

Configuring Parature Self-Service Portal

IP Application Security Manager and. VMware vcloud Air

Single Sign On for ShareFile with NetScaler. Deployment Guide

Managing Qualys Scanners

VMware vsphere Data Protection 5.8 TECHNICAL OVERVIEW REVISED AUGUST 2014

Fax User Guide 07/31/2014 USER GUIDE

Cloud Director User's Guide

Configuring ADFS 3.0 to Communicate with WhosOnLocation SAML

Integration Guide. SafeNet Authentication Service. Using SAS as an Identity Provider for Tableau Server

Installing and Configuring vcenter Multi-Hypervisor Manager

EMC Smarts Integration Guide

Single Sign-On Implementation Guide

VMware vsphere Data Protection 6.0

Reconfiguring VMware vsphere Update Manager

Obtaining SSL Certificates for VMware View Servers

McAfee Cloud Identity Manager

Installing and Configuring vcloud Connector

Single Sign-On Implementation Guide

DualShield SAML & SSO. Integration Guide. Copyright 2011 Deepnet Security Limited. Copyright 2011, Deepnet Security. All Rights Reserved.

SAML 2.0 SSO Deployment with Okta

SAM Context-Based Authentication Using Juniper SA Integration Guide

McAfee Cloud Identity Manager

INTEGRATION GUIDE. DIGIPASS Authentication for Salesforce using IDENTIKEY Federation Server

VMware User Environment Manager

User Management Tool 1.6

SAP NetWeaver AS Java

Installing and Configuring vcenter Support Assistant

SAML Single-Sign-On (SSO)

Obtaining SSL Certificates for VMware Horizon View Servers

Reconfiguring VMware vsphere Update Manager

PingFederate. Windows Live Cloud Identity Connector. User Guide. Version 1.0

SOA Software API Gateway Appliance 7.1.x Administration Guide

OneLogin Integration User Guide

Google Apps Deployment Guide

Learn More MaaS360 Cloud Extender Checklist (MDM for Blackberry)

Transcription:

Configuring Single Sign-on from the VMware Identity Manager Service to Worktap VMware Identity Manager JULY 2016 V1

Table of Contents Overview... 2 Adding Worktap to VMware Identity Manager Catalog... 2 Add Worktap to the Catalog... 2 Download SAML-Signing Certificate... 3 Setting up Identity Manager in Worktap... 4 Testing Single Sign-on Configuration... 4 Set up User in VMware Identity Manager for Testing... 4 Set up a User in Worktap for Testing... 5 Verify Test-User can Sign into Worktap... 5 Completing the Configuration in the Catalog... 5 Entitle Users to Worktap... 6 / 1

Overview This document provides information about configuring SAML-based single sign-on from the VMware Identity Manager service to Worktap. Worktap offers enterprise cloud solutions that allow companies to easily engage, enable, and prepare their newly hired workers to be successful in their new jobs. When Worktap is configured in the VMware Identity Manager catalog, users can sign in to Worktap from their VMware Identity Manager apps portal. You must have an administrator account for the VMware Identity Manager service to configure Worktap. You work with your Worktap representative to configure VMware Identity Manager for single sign-on in the Worktap server. Adding Worktap to VMware Identity Manager Catalog To enable single sign-on to Worktap on the service, you must configure the app in the catalog. Add Worktap to the Catalog 1. Log in to the VMware Identity Manager administration console. 2. In the Catalog page, click Add Application >...from the cloud application catalog. 3. Click the Worktap icon. 4. Click Configuration. The Configuration page is preconfigured as follows. FIELD Launch URL CONFIGURED VALUE Automatically populated with your launch URL. RelayState Proxy Count LoginRedirection URL Include Destination Sign Response Enabled Enabled Sign Assertion Include Cert Signature Algorithm Digest Algorithm SHA1 with RSA SHA1 / 2

Allow API Access Assertion Consumer Service * Name ID Format Name ID Value Recipient Name * Audience * Assertion Lifetime Automatically populated with the URL where the SAML is posted. https://{companyname}.worktap.net/simplesaml/module. php/saml/sp/saml2-acs.php/default-sp Unspecified (username) Custom value ${user.username} The SP assertion consumer service URL populated as https://{companyname}.worktap.net/simplesaml/module. php/saml/sp/saml2-acs.php/default-sp The SP s unique identifier populated as https://{companyname}.worktap.net/simplesaml/module. php/saml/sp/metadata.php/default-sp Populated with a value of 200 seconds. Signing Certificate Application Parameters Set the subdomain value.. For example, if your Worktap login is https://acme.worktap.net, set the value as acme for the CompanyName Attribute Mapping 5. Click Save. Download SAML-Signing Certificate If the SAML-signing certificate from the VMware Identity Manager service is required for the Worktap configuration, you can retrieve the certificate from the Catalog > Settings tab. 1. In the Catalog > Settings tab, click SAML Metadata. Copy and save the Signing Certificate text as a.pem file on your computer. Make sure that you include text from -----BEGIN CERTIFICATE---- through ---------END CERTIFICATE----. / 3

Setting up Identity Manager in Worktap Contact Worktap to set up single sign-on for VMware Identity Manager. You might require the following information. Your identity manger domain name VMware Identity Manager SAML signing certificate Testing Single Sign-on Configuration Test your single sign-on configuration with a small number of users before deploying the application across your organization. Set up User in VMware Identity Manager for Testing 1. Log in to the VMware Identity Manager administration console. 2. In the Users & Groups page, click Users and ensure that the user you are testing is in the list of users. 3. In the Catalog page, click on the Worktap application. 4. Click Entitlements. 5. Click +Add user entitlement. 6. Select the test user and change the DEPLOYMENT field value for the user to Automatic. For example: / 4

7. Click Save, then click Done. 8. In the top-right corner of the page, click your user name and select Logout. Set up a User in Worktap for Testing Make sure the test user you set up in VMware Identity Manager is configured in Worktap. Verify Test-User can Sign into Worktap 1. Sign in to the user portal as the test user. 2. Click the Worktap icon on the My Apps page. You should now have single sign-on access to Worktap. Completing the Configuration in the Catalog In addition to configuring the Web application for single sign-on to the service, you can configure additional settings to add an access policy, set up external approval requirements, and entitle users and groups to the app. Entitlements Access Policies After you configure a Web application, you can add group entitlements and entitle individual users to the Web app. The VMware Identity Manager service includes a default policy that is automatically assigned to the Web app when you add the app to the Catalog. If you do not want to use the default access policy, create a new access policy and in the Access Policies link, select the access policy to use for this Web application. For example, you can create a stricter policy than the default, with rules that specify which IP addresses have access to the application, using which authentication methods, and for how long until reauthentication is required. See the VMware Identity Manager documentation at http://pubs.vmware.com. Licensing In some applications, licensing can be used to require users to request external approval before they can access the application. In addition, you / 5

can add additional information, including pricing, license type, cost per license and the number of licenses. You can run the Resource Usage report to see the approval information for the application. Entitle Users to Worktap You can activate single sign-on for all users. 1. Log in to the VMware Identity Manager administration console. 2. In the Catalog page, click Worktap. 3. In the Modify application page, click Entitlements. 4. Click +Add group entitlement. 5. Select ALL USERS and change the DEPLOYMENT TYPE value to Automatic. 6. Click Save, then click Done. / 6

VMware, Inc. 3401 Hillview Avenue Palo Alto CA 94304 USA Tel 877-486-9273 Fax 650-427-5001 www.vmware.com Copyright 2016 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. VMware products are covered by one or more patents listed at http://www.vmware.com/go/patents. VMware is a registered trademark or trademark of VMware, Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies.

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information