You can add third-party identity providers as an application source in Workspace ONE Access to simplify the deployment of large numbers of applications from these third-party identity providers to the Workspace ONE Intelligent Hub catalog. Adding an identity provider as an application source streamlines the process of adding individual applications from that provider to the end-user catalog.

Web applications that use the SAML 2.0 authentication profile can be added to the catalog. The application configuration is based on the settings configured in the application source. Only the application name and the target URL are required to be configured.

When you add applications, you can entitle users and groups to the application and apply an access policy to control user access to the application. Users can access these applications in the Intelligent Hub portal or app.

The configured settings and policies from the third-party application source can be applied to all applications managed by the application source.

Sometimes third-party identity providers send an authentication request without including which application a user is trying to access. If Workspace ONE Access receives an authentication request that does not include the application information, the backup access policy rules configured in the application source are applied instead of the rule set for the individual application.

The following identity providers can be configured as application sources in Workspace ONE Access.

  • Okta
  • Ping Federated server from Ping Identity
  • Active Directory Federation Services (ADFS)