Configure VMware Identity Manager

VMware Identity Manager can be used to authenticate the information transfer when using connectors for client applications. If your environment consists of VMware Identity Manager , you can create a VMware Identity Manager template to fetch user specific JWT token for connector authentication. For more information about installing and configuration VMware Identity Manager in your environment, see Installing and Configuring VMware Identity Manager.

Configure Mobile Flows Server Provision

You must install and configure VMware Identity Manager for an uninterrupted Mobile Flows user-experience. When you install and configure VMware Identity Manager for Mobile Flows, VMware Identity Manager creates a tenant in the Mobile Flows server. The tenant is created using API and requires no manual configuration. In case if the tenant is not created using API, you can manually configure a VMware Identity Manager tenant in the Mobile Flows server. For more information about creating VMware Identity Manager tenant, see Create Your Identity Provider section of the VMware Identity Manager Connector Installation and Configuration guide.

Configure VMware Identity Manager Template

  1. Log in to the VMware Identity Manager  Console and navigate to Catalog > Settings > Remote App Access > Templates.
  2. Select Create Template.
  3. Select Template ID text box and enter a template name. For example, HeroCard_Template1.
  4. Select Application text box and enter Identity Manager.
  5. Select Scope text box and enter ENABLE email, profile, user, openid.
  6. Select Redirect URL text box and enter com.airwatch.herocard://success as the registered redirect URL.

  7. Select Token Type and select Bearer. This attribute tells the application what type of access token it was given. For VMware Identity Manager, the tokens are bearer tokens.
  8. Select Token Length and leave the default setting, 32 Bytes.
  9. Select Issue Refresh Token and select Enabled to use refresh tokens.
  10. Select Access Token TTL and enter 30 days as the access token time to live length. When the access token expires, the application uses the refresh token to request a new access token.

  11. Select Refresh Token TTL and enter 365 days as the refresh token time to live.

  12. Select Add.