Tag: SAML Authentication

Posted on

MyLab: Configuring VMware Horizon on Unified Access Gateway (UAG)

Overview

This post will document how to configure VMware Horizon on Unified Access Gateway (UAG). To get this working the first time, ensure the following appliances are configured. A Unified Access Gateway should already be deployed and configured. Reference the link for more information on how to:
* Log into the Appliance Settings
* Configure NTP servers
* Configure TLS settings (Admin and Internet interfaces)
* Configure a SAML Identity Provider (IdP)
* Configure High Availability Settings (if required)
* Configure network settings.

The other technology that should already be configured are the VMware Horizon Connection servers. It is ideal to have separate Horizon Connection servers for internal and external endpoints. The configurations for these servers are different when dealing with tunnels and secure gateways. Ensure the Horizon Connection servers have TLS certificates configured.

Continue reading “MyLab: Configuring VMware Horizon on Unified Access Gateway (UAG)”
Posted on

MyLab: Workspace ONE Access (post v2)

Preparing to Deploy the VMware Workspace ONE Access Appliance

Preparation tasks include the following:

  • Download the VMware Workspace ONE Access OVA file (customerconnect.vmware.com)
  • Create DNS records (forward (A) and reverse lookup (PTR) records are required)
  • Obtain IP addresses
  • Create the Workspace ONE Access Service Database (either using Windows Authentication Mode or Local SQL Server Authentication) — Explained later in this post
  • Change SQL Server Database Auto Growth Settings for Workspace ONE Access — Explained later in this post
Continue reading “MyLab: Workspace ONE Access (post v2)”
Posted on

MyLab: VMware Horizon True SSO

An Enterprise Certificate Authority needs to be accessible. Certificates are a big part of True SSO. There are going to be short term certificates that will be issued. True SSO will require the following servers and services:

  • A deployed and configured Workspace ONE Access appliance
  • A configured Workspace ONE Access connector with the VMware Virtual App Sync service configured
  • A synced Virtual Apps Collection in Workspace ONE Access
  • An Enterprise Certificate Authority
  • Smart Cards authentication configured in Active Directory
  • VMware Horizon Connection Server
  • VMware Horizon Enrollment Server
  • VMware Workspace ONE Access appliance
  • VMware Workspace ONE Access Connector

Familiarity with the command line is helpful, but not necessary as well.

Continue reading “MyLab: VMware Horizon True SSO”