You can add third-party identity providers as an application source in the Workspace ONE catalog to simplify the deployment of large numbers of applications from these third-party identity providers to Workspace ONE. Adding an identity provider as an application source streamlines the process of adding individual applications from that provider to the end-user catalog.

Web applications that use the SAML 2.0 authentication profile can be added to the catalog. The application configuration is based on the settings configured in the application source. Only the application name and the target URL are required to be configured.

When you add applications, you can entitle users and groups to the application and apply an access policy to control user access to the application. Users can access these applications in Workspace ONE portal from their desktop and mobile devices.

The configured settings and policies from the third-party application source can be applied to all applications managed by the application source.

Sometimes third-party identity providers send an authentication request without including which application a user is trying to access. If VMware Identity Manager receives an authentication request that does not include the application information, the backup access policy rules configured in the application source are applied instead of the rule set for the individual application.

The following identity providers can be configured as application sources in the Workspace ONE catalog.

  • Okta
  • Ping Federated server from Ping Identity
  • Active Directory Federation Services (ADFS)