You can add third-party identity providers as an application source in the Settings for SaaS Applications. Adding an identity provider as an application source streamlines the process of adding individual applications from that provider to the end-user catalog. Adding an identity provider as an application source streamlines the process of adding individual applications from that provider to the end-user catalog. To begin, entitle the ALL_USERS group to the application source and select an access policy to apply.
Web applications that use the SAML 2.0 authentication profile can be added to the catalog. The application configuration is based on the settings configured in the application source. Only the application name and the target URL are required to be configured.
When you add applications, you can entitle specific users and groups and apply an access policy to control user access to the application. Users can access these applications from their desktops and mobile devices.
The configured settings and policies from the third-party application source can be applied to all applications managed by the application source. Sometimes, third-party identity providers send an authentication request without including which application a user is trying to access. If VMware Identity Manager receives an authentication request that does not include the application information, the backup access policy rules configured in the application source are applied.
The following identity providers can be configured as application sources.
- PingFederated server from Ping Identity
- Active Directory Federation Services (ADFS)
Adding an Application Source
You can configure your Application Source by selecting the third-party identity provider. After the Application Source is set up, you can then create the associated applications and entitle the users. For more information, see Adding Application Source for the third-party identity providers.
Entitling Users to the Application Source
You can set the entitlements for the Application Source to All Users or add Users / User Group. For more information, see Adding Users to the Application Source .
Adding Applications Managed by the Application Source
After the identity provider is configured as an application source, you can create the associated applications for each of the third-party identity providers. For more information, Adding Applications Managed by the Application Source .