To integrate Horizon Cloud with VMware Identity Manager, you need a Horizon Cloud tenant, a VMware Identity Manager tenant, and a VMware Identity Manager connector. You must install the connector appliance on premises with line-of-sight to the Horizon Cloud tenant.
Connector version 2016.1.1 or later is required for Horizon Cloud integration. On Windows, you can use the VMware Enterprise Systems Connector, which includes the VMware Identity Manager Connector component.
Connector Deployment On Premises
The connector syncs user and group information from Active Directory to the VMware Identity Manager tenant.
The connector syncs Horizon Cloud user and group entitlements from the Horizon Cloud tenant to the VMware Identity Manager tenant.
The end user accesses a desktop or application as follows:
The end user logs into the VMware Identity Manager service and clicks on a desktop or application.
The service generates a launch URL and passes it to the Horizon Client. The launch URL includes a SAML artifact ID.
The Horizon Client accesses the launch URL.
The Horizon Cloud tenant receives the request and validates the SAML artifact ID with the VMware Identity Manager service.
If the SAML artifact ID is validated by the VMware Identity Manager service, the desktop or application is streamed to the Horizon Client by the Horizon Cloud tenant.
Installing the Connector
For information on installing the connector virtual appliance on vCenter Server, see the VMware Identity Manager Cloud Deployment guide. Connector version 2016.1.1 or later is required for Horizon Cloud integration.
On Windows, you can install the VMware Enterprise Systems Connector, which includes the VMware Identity Manager Connector component. The Enterprise Systems Connector can be downloaded from VMware AirWatch. For information, see VMware Enterprise Systems Connector Installation and Configuration.
After you install and configure the connector, create a directory in your VMware Identity Manager tenant and ensure that you sync the Active Directory users and groups that have Horizon Cloud desktop and application entitlements.