The VMware Identity Manager connector is an on-premises component of VMware Identity Manager that provides directory integration, user authentication, and integration with resources such as Horizon 7.

The connector is deployed in outbound connection mode and does not require inbound port 443 to be opened. It communicates with the VMware Identity Manager service through a Websocket-based communication channel.

Figure 1. VMware Identity Manager Connector Deployment

VIDM Connector diagram

Note: The VMware Identity Manager tenant depicted in the diagram can either be in the cloud or deployed on premises.

Supported Authentication Methods

The VMware Identity Manager connector supports the following authentication methods.

  • Password
  • RSA Adaptive Authentication
  • RSA SecurID
  • RADIUS
  • Kerberos authentication for internal users
Note: In addition to these connector-based authentication methods, VMware Identity Manager service-based authentication methods are also available. Additionally, inbound SAML through a third-party identity provider is available.

Supported Directory Integrations

The VMware Identity Manager connector supports integration with the following types of enterprise directories.

  • Active Directory over LDAP
  • Active Directory over Integrated Windows Authentication
  • LDAP Directory
Note: You can also use Just-in-Time provisioning to create users in the VMware Identity Manager service dynamically at login, using SAML assertions sent by a third-party identity provider.

Supported Resources

The VMware Identity Manager connector supports integration with the following types of resources.

  • VMware Horizon® 7, Horizon 6, or View desktop and application pools
  • VMware Horizon® Cloud Service™ with Hosted and On-Premises Infrastructure
  • Citrix-published resources
Note: Additionally, VMware Identity Manager supports Web apps and native mobile apps.