When a Web application requires simple browser-based user name and password authentication to log in, select the HTTP Basic authentication profile. When users log in to the Web application the first time, they are asked for their user name and password. With the assistance of the Workspace ONE extension, VMware Identity Manager collects and securely stores this information.

About this task

The Web application does not manage the login request. The browser displays a login dialog box to enter the user name and password. HTTP Basic authentication does not require cookies, session identifiers, or logout pages.

Prerequisites

The URL of the Web application login page.

Procedure

  1. In the administration console, click the Catalog tab.
  2. Click Add Application > Web Application ...create a new one.
  3. Complete the information on the Details page, and click Next.

    Form Item

    Description

    Name

    Enter the name of the application.

    Description

    (Optional) Add a description of the application.

    Icon

    (Optional) To add an icon that displays in the users Workspace ONE application page, click Choose File to upload an icon.

    PNG, JPG, and ICON file formats, up to 4 MB, are supported. Uploaded icons are resized to 80px X 80px.

    To prevent distortion, upload icons where the height and width are equal to each other and as close as possible to the 80px X 80px resize dimensions.

  4. Select the Authentication Profile, HTTP Basic, and click Next.

    The application record s added to your catalog, and the system displays the record's Details page.

  5. In the Application Configuration page, complete the following.

    Option

    Description

    Launch URL

    Enter the URL to the Web application. Enter as http://webapp.example.com

    Username Source

    Select either User Defined or Constant.

    • User Defined requires that each user enters a user name in the log in page.

    • Constant requires you to configure a user name that everyone in a group can use to log in to the Web application.

    Password Source

    Select either User Defined or Constant

    • User Defined requires that each user enters a password to log in.

    • Constant requires you to configure a password that everyone in the group can use to log in to the Web application.

  6. Click Save.
  7. Select the Entitlements tab to entitle users and groups to the application.
  8. Click Done.

Results

An entry is created in the catalog that points directly to the Web application.

The first time users access the Web application from their Workspace ONE portal, VMware Identity Manager checks to see if the Workspace ONE extension is installed. If it is not installed, users are asked to install the extension in their browser. Users are prompted to enter the user name and password for the Web application the first time they access the application. VMware Identity Manager collects and securely stores the user name and password for single sign-on from Workspace ONE.

Note:

If users log in to an application from the browser before they are entitled to the app through VMware Identity Manager, they are not prompted for the password. The extension only prompts when users are not already authenticated with the application.

If passwords are changed, the next time the user tries to access the application from the Workspace ONE portal, the automatic login using the replay of the password fails. The user must enter the user name and password again.

Users are asked if they want to store the user name and password. Asking users to confirm if they want to save the password avoids problems if the user is trying to log in with a second account on the same site but does not want to store that password. For example, when entering a temporary password or a shared account password.