After configuring directory integration settings between your AirWatch instance and VMware Identity Manager, your end users must sign in only once using Workspace ONE. Single sign-on enables access to all your organization’s available apps without the need to sign in each time.
VMware Identity Manager together with AirWatch enable you to consolidate a list of your organization’s suggested Web apps and native mobile apps in unified application catalogs. This functionality does not allow for AirWatch to receive directory changes from Identity Manager.
There are steps you must take before you can integrate directory services with VMware Identity manager.
- VMware Enterprise Systems Connector must be set up and configured for your AirWatch environment.
- Directory service integration must be set up and configured for the chosen organization group and not inheriting settings from a parent organization group.
- Accept the End User License Agreement (EULA) found in the VMware Identity Manager console. This EULA displays when you first open the console.
Synchronization Between AirWatch and VMware Identity Manager
Synchronization of directory information between AirWatch and VMware Identity Manager occurs on the same schedule as the AirWatch directory sync. Users are also synced to VMware Identity Manager immediately when added by an administrator manually or from a bulk import.
Also, the integration with VMware Identity Manager supports Just-in-Time provisioning (JIT). Users with directory accounts have their accounts synced to VMware Identity Manager the first time they log in using an enrollment or self-service portal. Manual synchronization is not required to add a single user to VMware Identity Manager immediately.