Workspace ONE customers who have deployed Active Directory synchronization with VMware Identity Manager using only their existing ACC connectors must follow a migration procedure if they want to take advantage of the additional functionality included with the VMware Identity Manager Connector component of the Enterprise Systems Connector. This one-time procedure converts the ACC directory of type Other to a directory of type Active Directory over LDAP or Active Directory (Integrated Windows Authentication), which are associated with the VMware Identity Manager Connector. This procedure does not remove the existing directory or any entitlements associated with it.

Note:

The ACC-only model of directory sync and authentication with VMware Identity Manager is still available and supported by simply updating the ACC going forward. The migration procedure is only required if you want to take advantage of the new functionality.

Converting the Other directory includes the following tasks.

  1. Convert the Other Directory to Active Directory over LDAP or Active Directory (Integrated Windows Authentication).

  2. Configure additional VMware Identity Manager connector authentication methods for the directory, if necessary. The Password authentication method is available by default.

  3. Edit the default policy and any custom policies to use Password or another VMware Identity Manager connector authentication method instead of Password (AirWatch Connector).

  4. Stop user and group sync from AirWatch to the VMware Identity Manager directory.