Integration of VMware Identity Manager with CAs, Keycloak

Vmwareidentity Manager ( VIDM) is a powerful set of identity management systems developed by VMware. Users can use this system to achieve enterprise-class applications (including SAAS, virtual applications and desktops, native mobile applications,WINDOWS10 applications, etc.) Single sign-on, self-service store, multiple device support, policy-based access control, and more. In a nutshell: Customers can use the system to access applications or data on a private data center or public cloud platform, anytime, anywhere, on a variety of devices.

Many customers in China have developed their own identity authentication system to achieve single sign-on. These customers either didn't use the advanced features of VIDM in the first place, or could not abandon the original system, and start anew. These customers want to retain existing authentication systems, single sign-on access to VMware 's virtual applications or desktops. So the question is, how to integrate two sets of identity authentication systems (IDM).

Fortunately,VIDM is a SAML -compliant system that can provide authentication capabilities to other applications as SAMLIDP, as well as Saml SP and other compliant the SAML standard authentication system is integrated.

650) this.width=650; "Src=" https://s2.51cto.com/wyfs02/M02/8C/E4/wKioL1h86yKQJ05oAAD05mhxTZQ403.png-wh_500x0-wm_ 3-wmp_4-s_3667863568.png "title=" 1.png "alt=" Wkiol1h86ykqj05oaad05mhxtzq403.png-wh_50 "/>

in China, many customers ' The IDM system is developed on an open-source platform, such as CAS(centralauthentication Service), Keycloak (HTTP/ www.keycloak.org/). These open source platforms can support the SAML protocol. VIDM can configure third-party IDM systems as their third-party IDP, and a VIDM system can support the configuration of multiple third-party IDP. The user identity database of the VIDM system itself can be either Microsoft AD or any platform that supports the LDAP protocol, such as OpenLDAP, IBM Directory server, and so on.

VIDM The ability to use the SAML protocol to delegate authentication requests to third-party IDM so that the client logs on to an existing IDM platform, thereby single-sign on to the VIDM platform-protected application, such as a virtual desktop.

is a VIDM and third-party IDM systems are integrated into the architecture. Detailed documentation on VIDM and CAS as well as Keycloak integrated solutions will be available in the following articles.

About the SAM Zhao,euc Solution department Manager. 13 years of IT experience in software development, testing, project management, five patents and a combined book

This article is from the VMware End User Computing blog, so be sure to keep this source http://vmwareeuc.blog.51cto.com/8606576/1892430

Integration of VMware Identity Manager with CAs, Keycloak