Adding an identity provider as an application source streamlines the process of adding individual applications from that provider to the end-user catalog because you can apply configured settings and policies from the third-party application source to all applications managed by the application source.
To begin, entitle the ALL_USERS group to the application source and select an access policy to apply.
Web applications that use the SAML 2.0 authentication profile can be added to the catalog. The application configuration is based on the settings configured in the application source. Only the application name and the target URL are required to be configured.
When you add applications, you can entitle specific users and groups and apply an access policy to control user access to the application. Users can access these applications from their desktops and mobile devices.
The configured settings and policies from the third-party application source can be applied to all applications managed by the application source. Sometimes, third-party identity providers send an authentication request without including which application a user is trying to access. If Workspace ONE UEM receives an authentication request that does not include the application information, the backup access policy rules configured in the application source are applied.
The following identity providers can be configured as application sources.
- PingFederated server from Ping Identity
- Active Directory Federation Services (ADFS)