You add OpenID Connect applications to the VMware Identity Manager catalog from the Catalog > Web Apps tab.

Prerequisites

  • Obtain the target URL, redirect URL, client ID, and client secret for the application.
  • Create an access policy if you do not want to use the default access policy. You can create access policies from the Identity & Access Management > Manage > Policies page.
  • Create categories, if required. You can create categories from the Catalog > Web Apps page by clicking Categories and typing the category name in the text box.
  • Create user groups, if required. You can create groups from the Users & Groups > Groups tab.

Procedure

  1. In the VMware Identity Manager console, select the Catalog > Web Apps tab.
  2. Click New.
  3. In the Definition page of the New SaaS Application wizard, enter the required information.
    Option Description
    Name Enter a unique name for the application.
    Description (Optional) Enter a description of the application.
    Icon

    (Optional) Upload an icon for the application. Icons in PNG, JPG, and ICON file formats, up to 4MB, are supported.

    The icon must be a minimum of 180 x 180 pixels. If the icon is too small, it does not display. In that case, the Workspace ONE icon is displayed.

    Category

    (Optional) To add the application to a category, select it from the drop-down menu. Categories must already be created.

    A predefined Recommended category is also available. Select it if you want the application to appear in the Recommended page in Workspace ONE. If you want the app to appear in the users' Bookmarks page, select the Recommended category and in the Catalog > Settings > User Portal Configuration page, select Show recommended apps in Bookmarks tab.

  4. Click Next.
  5. In the Configuration page, enter the required configuration information.
    Option Description
    Authentication Type Select OpenID Connect.
    Target URL The application URL to which users will be sent when they click the app in Workspace ONE.
    Redirect URL The URL to which VMware Identity Manager will send the authorization code.
    Client ID The Client Identifier that the app will include in the authentication requests made to VMware Identity Manager. The Client ID must be unique per tenant.
    Client Secret The secret that the app will use to identify itself in the authentication requests made to VMware Identity Manager.
    Open in VMware Browser Select this option if you want the Workspace ONE app to open the application in the VMware Browser, which provides a secure alternative to the native Web browser.
  6. Click Next.
  7. In the Access Policies page, select the access policy to manage user access to the application
    The default_access_policy_set is selected by default. For information about creating and managing access policies, see VMware Identity Manager Administration.
  8. On the Summary page, review your selections and click Save, or click Save & Assign to assign the application to users and groups.
    If you do not assign the application to any users and groups at this time, you can do so later by selecting the application in the Catalog > Web Apps page and clicking Assign.
  9. If you clicked Save & Assign, assign the application to users and groups.
    1. Add users and groups by typing the name in the search box and selecting from the results
    2. Select the deployment type for each user and group.
      Regardless of whether you select User Activated or Automatic, the application appears in the Catalog page in Workspace ONE. Users can run the application from the Catalog page or bookmark it and run it from the Bookmarks page. If you plan to set up an approval flow for the application, select User Activated.
  10. Click Save.

Results

The application is added to the catalog. To edit the application configuration at any time, select the application in the Catalog > Web Apps page and click Edit.