You can integrate multiple Horizon Cloud tenants with a single instance of Workspace ONE Access so that you can sync Horizon Cloud resources and entitlements from all the tenants to a single location, centrally manage authentication and access policies, and serve end users with entitlements in different tenants from a single user portal or app.

Important: This topic applies to Workspace ONE Access integration with Horizon Cloud Service on Microsoft Azure with Single-Pod Broker or Horizon Cloud Service on IBM Cloud environments, using the Virtual App service component of Workspace ONE Access connector 22.05 or later.

While integrating multiple Horizon Cloud tenants, take into account the following considerations.

  • A single instance of the Virtual App service can sync resources and entitlements from multiple Horizon Cloud tenants to the Workspace ONE Access service.
  • Each Horizon Cloud tenant might provide entitlements for users in different Active Directory instances and domains. Ensure that you add all the relevant directories and domains to Workspace ONE Access so that all users with entitlements in any of the Horizon Cloud tenants are synced to Workspace ONE Access.
  • If the tenant appliances have self-signed certificates, you must upload the self-signed certificates as trusted root certificates on the Workspace ONE Access connector. You can upload the certificates by running the connector installer again and uploading the certificates on the Install Trusted Root Certificates page.
  • Workspace ONE Access cannot access and sync entitlements from a tenant on which two-factor authentication is enabled.
  • In Workspace ONE Access, you can add all the Horizon Cloud tenants to a single virtual apps collection, or create multiple collections. When all the Horizon Cloud tenants are added to one virtual apps collection, if Workspace ONE Access cannot access one of the tenants, it creates an alert and continues to sync resources and entitlements from the other tenants.
  • Ensure that you configure SAML authentication in each Horizon Cloud tenant that you integrate with Workspace ONE Access.