You can add third-party identity providers as an application source in the Workspace ONE catalog to simplify the deployment of large numbers of applications from the third-party identity provider to Workspace ONE. Adding an identity provider as an application source streamlines the process of adding individual applications from that provider to the end-user catalog. To begin, entitle the ALL_USERS group to the application source and select an access policy to apply.

Web applications that use the SAML 2.0 authentication profile can be added to the catalog. The application configuration is based on the settings configured in the application source. Only the application name and the target URL are required to be configured.

When you add applications, you can entitle specific users and groups and apply an access policy to control user access to the application. Users can access these applications in Workspace ONE from their desktops and mobile devices.

The configured settings and policies from the third-party application source can be applied to all applications managed by the application source. Sometimes, third-party identity providers send an authentication request without including which application a user is trying to access. If VMware Identity Manager receives an authentication request that does not include the application information, the backup access policy rules configured in the application source are applied rather than the rule set for the user's application.

The following identity providers can be configured as application sources in the Workspace ONE catalog.

  • Okta

  • PingFederated server from Ping Identity

  • Active Directory Federation Services (ADFS)