EUCZero Trust Journey 2021 Day 3 - Transport TrustHorizon integration into Workspace ONE Access

Horizon integration into Workspace ONE Access

Overview

  • Federating VMware Horizon with Workspace ONE Access

Configuring Workspace ONE Access and Horizon Integration

  1. On your ControlCenter server
    • Open your Google Chrome browser
    • Select the Horizon shortcut for Horizon administrator
    • In the User Name area login as administrator
      • In the Password area type  VMware1! 
    • Select Sign in
Configuring VMware Identity Manager to deliver remote Applications and Desktops
  1. Expand Settings,
    • Select Servers
    • Select the Connection Servers Tab
  1. Under Servers
    • Select the HORIZON radio button
    • Select  Edit 
  1. On the Edit Connection Server Settings page
    • Select the Authentication tab.
  1. On the Authentication tab,
    • Under Delegation of authentication to VMware Horizon (SAML 2.0 Authenticator):
      • Using the Drop down Arrow
        • Select Allowed,
    • Select the Manage SAML Authenticators box
  1. On the Manage SAML Authenticators box  
    • Select Add
  1. In the Add SAML 2.0 Authenticator window.
    • Ensure Dynamic radio button is selected,
    • Enter the following:
      • Under Label: type Workspace ONE Access
      • Under Metadata URL : https://YOUR CUSTOM Access URL/SAAS/API/1.0/GET/metadata/idp.xml
      • e.g. https://aw-euclivefirefran.vidmpreview.com/SAAS/API/1.0/GET/metadata/idp.xml
  1. Click OK to close the Manage SAML Authenticators window
  1.  Click OK to close the Connection Server Settings
  1. On the ContolCenter Server desktop,
    • Launch a new tab on your Google Chrome Browser .
    • Login as sysadmin to your Saas Instance of Workspace ONE Access
    • On the Catalog tab,  select Virtual Apps Collection
  1. On the Introducing Virtual Apps Collection Page
    • Select GET STARTED
  1. In the Select the Source Type window,  
    • In the Horizon box,  
      • Click the SELECT link
  1. On the NEW Horizon Collection page type the follow next the following headers
    • Name : Horizon
      • In the Connector area accept the default ws1-connector.euc-livefire.com (LivefireSync)
    • Select NEXT
  1. In the New Horizon Collection wizard
    • Step 2. Pod and Federation, select + ADD A POD
  1. In the New Horizon Collection wizard
    • Under Horizon Connection Server type : Horizon.euc-livefire.com
    • Under Username type: [email protected]
    • Under Password type: VMware1!
    • Select ADD
  • Select Next
  1. In the New Horizon Collection wizard
    • In Step 3 Configuration
      • On the Sync page under Activation Policy
      • Change User Activated to Automatic ,
      • Under the Default Launch Client select Browser
    • Select Next
  1. In the New Horizon Collection wizard
    • In Step 4 Summary
      • Select SAVE & CONFIGURE
  1. On the Horizon window
    • Select BACK
  1. From the Virtual Apps Collections Window
    • Select the radio button next to Horizon
    • Select SYNC
    • Select Sync without safeguards
    • Next to Catalog select the dropdown
      • Select Virtual Apps
        • Notice you now have Published Horizon Applications and a Horizon Virtual Desktop entitlements

This concludes this exercise. Move onto the next chapter

0 Comments

Add your comment

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.