To integrate a node with your VMware Identity Manager environment, you must configure the node with the appropriate VMware Identity Manager information. You use the Administration Console to configure this information.

About this task

You use the Identity Management page to configure the VMware Identity Manager information for a node.

Prerequisites

Verify that you have the following information:

  • The SAML identity provider (IdP) metadata URL from your VMware Identity Manager environment. You obtain the environment's SAML IdP metadata URL using the VMware Identity Manager administration console and navigating to Catalog > Settings > SAML Metadata. When you click the Identity Provider (IdP) metadata link on that page, your browser's address bar displays the URL, typically in the form https://VMwareIdentityManagerFQDN/SAAS/API/1.0/GET/metadata/idp.xml, where VMwareIdentityManagerFQDN is the fully qualified domain name (FQDN) of your VMware Identity Manager environment. For details, see the VMware Identity Manager product information appropriate for your situation:

    VMware Identity Manager environment

    Configure SAML Authentication Steps

    Cloud-hosted

    Configure SAML Authentication in the Horizon Cloud Tenant

    On-premises version 2.8.x

    Configure SAML Authentication in the Horizon Cloud Tenant

  • Obtain the FQDN that your organization's DNS records maps to the node's load balancer FQDN or to the node's tenant appliance IP address.

Procedure

  1. Log in to the Administration Console.
  2. Navigate to Settings > Identity Management and click New.
  3. Configure the following options.

    Setting

    Description

    VMware Identity Manager URL

    Type your VMware Identity Manager environment's SAML IdP metadata URL, typically of the form https://VMwareIdentityManagerFQDN/SAAS/API/1.0/GET/metadata/idp.xml where VMwareIdentityManagerFQDN is the FQDN of your VMware Identity Manager environment.

    Timeout SSO Token

    (Optional) The amount of time, in minutes, after which the SSO token times out. The default is zero (0).

    Location

    Select one of your locations to filter the Node drop-down to the set of nodes associated with that location.

    Node

    Select the node for which this VMware Identity Manager configuration applies.

    Data Center

    The drop-down displays a numeric indicating the build version of the installed Horizon Cloud node software. Keep the default.

    Tenant Address

    Type FQDN that your organization's DNS records maps to the node's load balancer FQDN (if the deployed node has Unified Access Gateway) or to the node's tenant appliance IP address.

  4. Click Save.

Results

A status of green indicates that the configuration is successful.

What to do next

In your VMware Identity Manager environment, sync the entitled desktops and applications to VMware Identity Manager, as documented in the VMware Identity Manager product information appropriate for your situation:

VMware Identity Manager environment

Link to Desktop Enablement Steps

Cloud-hosted

Syncing Horizon Cloud Desktops and Apps with VMware Identity Manager

On-premises version 2.8.x

Syncing Horizon Cloud Desktops and Apps in VMware Identity Manager