After users use True SSO to login to the desktop, they can unlock the desktop after reauthentication from the Workspace ONE portal using the same logon credentials.

Prerequisites

  • Verify that you have VMware Horizon version 7.8 or later.
  • Verify that you have Horizon Client for Windows version 5.0 or later.
  • Verify that you have Workspace ONE version 19.03 or later.

Procedure

  1. Enable Workspace ONE and configure it for use with Connection Server.
    See the Workspace ONE documentation at the Workspace ONE documentation Web page.
  2. Configure Horizon Connection Server for True SSO.
    See Configure Horizon Connection Server for True SSO.
  3. To start virtual or published desktops, connect to a Connection Server in Workspace ONE mode that has True SSO configured. See, the Horizon Client documentation at the VMware Horizon Clients documentation Web page.
  4. Start virtual or published desktops from the Workspace ONE portal so that the user can use single sign on with True SSO.
  5. Lock the desktop.
  6. To unlock the desktop, select VMware True SSO User and click Submit.
    You are redirected to the browser to re-authenticate with Workspace ONE.
  7. Enter the credentials and passcode of the locked desktop.

What to do next

You can disable this feature by setting a registry key on the machine where Horizon Agent is installed, in the following location:

HKLM\Software\VMware, Inc.\VMware VDM\Agent\CertSSO[DisableCertSSOUnlock=true]

You can also disable this feature by setting the registry key DisabledFeatures=TrueSSOUnlock on Horizon Client for Windows in the following locations:

  • On a Windows 32-bit operating system: [HKEY_CURRENT_USER\Software\VMware, Inc.\VMware VDM\Client] or [HKEY_LOCAL_MACHINE\Software\VMware, Inc.\VMware VDM\Client].
  • On a Windows, 64-bit operating system: [HKEY_CURRENT_USER\Software\VMware, Inc.\VMware VDM\Client] or [HKEY_LOCAL_MACHINE\Software\VMware, Inc.\VMware VDM\Client].

If the registry key is set, the VMware True SSO User option does not appear when the user unlocks the desktop.