EUCZero Trust Journey 2021 Day 3 - Transport TrustHorizon integration into Workspace ONE Access

Horizon integration into Workspace ONE Access


  • Federating VMware Horizon with Workspace ONE Access

Configuring Workspace ONE Access and Horizon Integration

  1. On your ControlCenter server
    • Open your Google Chrome browser
    • Select the Horizon shortcut for Horizon administrator
    • In the User Name area login as administrator
      • In the Password area type  VMware1! 
    • Select Sign in
Configuring VMware Identity Manager to deliver remote Applications and Desktops
  1. Expand Settings,
    • Select Servers
    • Select the Connection Servers Tab
  1. Under Servers
    • Select the HORIZON radio button
    • Select  Edit 
  1. On the Edit Connection Server Settings page
    • Select the Authentication tab.
  1. On the Authentication tab,
    • Under Delegation of authentication to VMware Horizon (SAML 2.0 Authenticator):
      • Using the Drop down Arrow
        • Select Allowed,
    • Select the Manage SAML Authenticators box
  1. On the Manage SAML Authenticators box  
    • Select Add
  1. In the Add SAML 2.0 Authenticator window.
    • Ensure Dynamic radio button is selected,
    • Enter the following:
      • Under Label: type Workspace ONE Access
      • Under Metadata URL : https://YOUR CUSTOM Access URL/SAAS/API/1.0/GET/metadata/idp.xml
      • e.g.
  1. Click OK to close the Manage SAML Authenticators window
  1.  Click OK to close the Connection Server Settings
  1. On the ContolCenter Server desktop,
    • Launch a new tab on your Google Chrome Browser .
    • Login as sysadmin to your Saas Instance of Workspace ONE Access
    • On the Catalog tab,  select Virtual Apps Collection
  1. On the Introducing Virtual Apps Collection Page
    • Select GET STARTED
  1. In the Select the Source Type window,  
    • In the Horizon box,  
      • Click the SELECT link
  1. On the NEW Horizon Collection page type the follow next the following headers
    • Name : Horizon
      • In the Connector area accept the default (LivefireSync)
    • Select NEXT
  1. In the New Horizon Collection wizard
    • Step 2. Pod and Federation, select + ADD A POD
  1. In the New Horizon Collection wizard
    • Under Horizon Connection Server type :
    • Under Username type: [email protected]
    • Under Password type: VMware1!
    • Select ADD
  • Select Next
  1. In the New Horizon Collection wizard
    • In Step 3 Configuration
      • On the Sync page under Activation Policy
      • Change User Activated to Automatic ,
      • Under the Default Launch Client select Browser
    • Select Next
  1. In the New Horizon Collection wizard
    • In Step 4 Summary
      • Select SAVE & CONFIGURE
  1. On the Horizon window
    • Select BACK
  1. From the Virtual Apps Collections Window
    • Select the radio button next to Horizon
    • Select SYNC
    • Select Sync without safeguards
    • Next to Catalog select the dropdown
      • Select Virtual Apps
        • Notice you now have Published Horizon Applications and a Horizon Virtual Desktop entitlements

This concludes this exercise. Move onto the next chapter


Add your comment

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.