The AirWatch Console and the VMware Identity Manager Console use an authorization code work flow that allows access to both consoles with single sign-on (SSO). This feature aims to allow access to the VMware Identity Manager console for admins in the AirWatch Console.
Register the OAuth Client During Setup
When you set up VMware Identity Manager in the AirWatch Console, you register the OAuth client as part of the setup wizard. The OAuth client registration is a prerequisite for this SSO feature to work.
VMware Identity Manager and AirWatch work in the back-end to authenticate the AirWatch admin to the VMware Identity Manager Console. The VMware Identity Manager Console passes an ID token to AirWatch. This token contains information about the admin and the authentication so that the admin can access both consoles. The two consoles follow the depicted process.