To configure SAML and SAML and Passthrough authentication methods in Horizon, you must upload the identity provider's SAML certificate metadata XML file to UAG ( Unified Access Gateway). The upload allows UAG to trust the identity provider by verifying the signature of an assertion using the public key of the identity provider.

Prerequisites

You must have downloaded the SAML metadata XML file from the identity provider and saved this file to a computer you can access.

Procedure

  1. In the Configure Manually section of the UAG Admin console, click Select.
  2. In the Advanced Settings > Identity Bridging Settings section, select the Upload Identity Provider Metadata gearbox icon.
  3. Enter the entity ID for the identity provider in the Entity ID text box.
    If you do not enter a value in the Entity ID text box, the identity provider name in the metadata file is parsed and used as the entity ID of the identity provider.
  4. In the IDP Metadata section, click Select and browse to the location where you have saved the metadata file.
  5. Click Open.
  6. Click Save.
    The following message is displayed: Configuration is saved successfully.

What to do next

Configure the Horizon settings on UAG for selecting the authentication method and choosing the required identity provider.