HTML form-based authentication uses the Workspace ONE Browser Extension to understand most HTML based Web login forms.

About this task

After users supply their credentials the first time, the extension can replay them for convenience the next time the application is accessed. The values specified are securely stored in the VMware Identity Manager database. Applications with multi-page login flows or credential elements that do not take the form of text entry are not supported.

In the Application Configuration page, you configure the launch URL and click Learn Application to identify the authentication fields that are required. You are redirected to the applications log in page and are guided through the steps to select the fields that should be configured.

Prerequisites

Workspace ONE extension installed.

The URL of the Web application login page.

Procedure

  1. In the administration console, click the Catalog tab.
  2. Click Add Application > Web Application ...create a new one.
  3. Complete the information on the Details page, and click Next.

    Form Item

    Description

    Name

    Enter the name of the application.

    Description

    (Optional) Add a description of the application.

    Icon

    (Optional) To add an icon that displays in the users Workspace ONE application page, click Choose File to upload an icon.

    PNG, JPG, and ICON file formats, up to 4 MB, are supported. Uploaded icons are resized to 80px X 80px.

    To prevent distortion, upload icons where the height and width are equal to each other and as close as possible to the 80px X 80px resize dimensions.

  4. Select the Authentication Profile, HTML Form. Click Next.
  5. In the Application Configuration page Launch URL text box, type the Web application URL.
    Note:

    If this is the first time you are configuring HTML Form authentication, you are asked to install the Workspace ONE extension. Click Install Extension and add it to the browser. The extension is added to the browser and the Workspace ONE extension icon is shown at the upper-right corner of the browser. Close the browser page to return to the Application Details page. The extension used by administrators is the same extension as used by end users.

  6. Click Learn Application. A series of screens walk you through the learning process.
    Note:

    Only text boxes and drop-down menus can be selected to learn.

    1. Click Go. You are redirected to the application page according to the URL you entered.
    2. If the page you are redirected to is not the actual login page, navigate to that page and click Next.
      Tip:

      Some Web applications modify the elements on the page while filling in the login text boxes. If the form page is not identifying the elements in the login text boxes on the page, enter some arbitrary text into the login text boxes before clicking Next. Doing this allows the application to make its modifications before continuing the learning process. One example of where this is necessary is when the login button is disabled until the user enters text into the login text box.

    3. On the application login page, click the text box for the first element to be learned. Select the type of element that is entered in this text box, User, Password, or Other. Click Next.
    4. Select the type of information that is entered in the text box, User Specific or Constant Value. Click Next.

      Constant Value is used for shared accounts or for additional tenant-wide identifiers. Enter a user name that everyone in a group can use to log in to the application.

    5. Click Yes to learn another text box that is required to log in to the application.
    6. Select the type of information that is entered in the text box, User Specific or Constant Value. Click Next.
    7. Continue to select the required text boxes and type of information required in that text box.
    8. When all the text boxes required to log in are learned, in the Are there anymore login fields dialog box, click No.
    9. When you see Initiate login to the application to complete the learning process, click the button that is used to log in to the application.
      Note:

      Do not enter valid login information in the text boxes in this step.

    You are returned to the Application Details page.

  7. Click Save. In the Entitlements tab, entitle users and groups to the application.
  8. Click Done.

Results

An entry is created in the catalog that points directly to the Web application.

The first time users access the Web application from their Workspace ONE portal, VMware Identity Manager checks to see if the Workspace ONE extension is installed. If it is not installed, users are asked to install the extension on their Workspace ONE portal. Users are prompted to enter the user credentials the first time they access the application. VMware Identity Manager collects and securely stores these credentials for single sign-on from Workspace ONE.

Note:

If users are accessing Workspace ONE from an unsupported browser, they are not prompted to install the extension. The applications are available in their portal, but single sign-on is not enabled.