To integrate Horizon Cloud desktops and applications with the VMware Identity Manager service, you add your Horizon Cloud tenant details in the VMware Identity Manager administration console and sync resources and entitlements from the Horizon Cloud tenant to the VMware Identity Manager service.

About this task

Note:

If you have set up multiple connectors in a high availability scenario, you must configure Horizon Cloud integration in all the connectors. You can set an automated sync schedule on one of the connectors but must set manual sync on the other connectors.

Prerequisites

  • Verify that you meet the prerequisites described in Prerequisites for Integration.

  • Verify that the Horizon Cloud tenant name is a fully-qualified domain name (FQDN). For example, server-ta1-1.example.com instead of server-ta1-1.

  • Verify that the v tenant appliance has a valid SSL certificate from a CA installed. Self-signed certificates are not supported. The certificate must match the FQDN of the tenant appliance.

Procedure

  1. Log in to the VMware Identity Manager administration console.
  2. In the Catalog tab, select Manage Desktop Applications > Horizon Cloud.
  3. Select the Enable Horizon Cloud Desktops and Applications check box.
  4. Enter the information for your environment.
    Important:

    Do not use non-ASCII characters when you enter your domain information.

    Option

    Description

    Tenant Host

    Fully-qualified domain name of your tenant host. For example: tenant1.example.com

    Tenant Port

    Port number of your tenant host. For example: 443

    Admin Username

    User name for your tenant administrator account. For example: tenantadmin

    Admin Password

    Password for your tenant administrator account.

    Admin Domain

    Active Directory NETBIOS domain name in which the tenant administrator resides.

    Domains to Sync

    Active Directory NETBIOS domain names for syncing Horizon Cloud resources and entitlements.

    Note:

    This field is case-sensitive. Ensure that you use the proper case when you enter the names.

     

    Deployment Type

    Select how Horizon Cloud resources are made available to users.

    • User-Activated: Horizon Cloud resources are added to the Catalog page in Workspace ONE. To use a resource, users must move the resource from the Catalog page to the Launcher page.

    • Automatic: Horizon Cloud resources are added directly to the Launcher page in Workspace ONE for users' immediate use.

    The deployment type that you select here is a global setting that applies to all user entitlements for all the resources in your Horizon Cloud integration. You can modify the deployment type for individual users or groups per resource, from the resource's Entitlements page.

    Setting the global deployment type to User-Activated is recommended. You can then modify the setting for specific users or groups per resource.

    For more information about setting the deployment type, Setting the Deployment Type for Horizon Cloud Entitlements.

    Choose Horizon Air Sync Frequency

    The frequency at which to sync Horizon Cloud resources and entitlements. You can set up a regular sync schedule or choose to sync manually. If you choose Manually, you must return to this page and click Sync Now whenever there is a change in your Horizon Cloud resources or entitlements.

    Select Default Launch Client

    Select the default client in which to launch Horizon Cloud applications or desktops.

    Option

    Description

    None

    No default preference is set at the administrator level. If this option is set to None and an end user preference is not set either, the Horizon Cloud Default Protocol setting is used to determine how to launch the desktop or application.

    Browser

    Horizon Cloud desktops and applications are launched in a web browser by default. End user preferences, if set, override this setting.

    Client

    Horizon Cloud desktops and applications are launched in the Horizon Client by default. End user preferences, if set, override this setting.

    This setting applies to all users and all resources in your Horizon Cloud integration.

    The following order of precedence, listed from highest to lowest, applies to the default launch client settings:

    1. End user preference setting, set in the Workspace ONE portal. This option is not available for the Workspace ONE app.

    2. Administrator Select Default Launch Client setting, set in the Horizon Cloud Resources page in the VMware Identity Manager administration console.

    3. Horizon Cloud Default Protocol settings.

    For example:

    Enable Horizon Air


  5. Click Save.
  6. Click Sync Now to sync resources and entitlements from the Horizon Cloud tenant to the VMware Identity Manager service.

What to do next

Configure SAML Authentication.