How to use LDAP user Single sign-on to Horizon desktops and apps

Horizon View's strong reliance on MS Ad has made it difficult for many LDAP users in the country to introduce Horizon view. Because you want to deploy Horizon view, you must create a new MS AD and synchronize the LDAP user with the password into MS AD. In addition, users in the subsequent use of the need to maintain two sets of password system, which is also a pain point. This article gives a solution to this problem.

The program consists of the following four parts:

1. Synchronize the LDAP user to Ms AD. Note that only user information (such as user name, UPN,DN) is required in this scenario and No synchronization password is required . In the subsequent use process, if the LDAP user has a change, the user information can be synchronized again. The user only needs to maintain the secret inside the LDAP.

2. LDAP as an authentication source for VIDM

3. Integration of VIDM and Horizon view

4. Horizon View True SSO

Give the above four-part relationship:

650) this.width=650; "Src=" Http://s4.51cto.com/wyfs02/M01/89/4B/wKioL1gPGJ2ScESaAABN5uCzZs8564.png-wh_500x0-wm_3 -wmp_4-s_1533722945.png "title=" Four.png "alt=" Wkiol1gpgj2scesaaabn5uczzs8564.png-wh_50 "/>

The end user process is as follows:

1. Login to VIDM LDAP domain-the user can log in as password, RSA, smart card, etc.

2. Open Horizon's desktop/app

Simple, just like the following diagram, two steps:

650) this.width=650; "Src=" Http://s5.51cto.com/wyfs02/M01/89/4B/wKioL1gPGYzAwgpuAAAaLcKmXqY544.png-wh_500x0-wm_3 -wmp_4-s_4230958130.png "title=" Two.png "alt=" Wkiol1gpgyzawgpuaaaalckmxqy544.png-wh_50 "/>

I will explain the specific technical details in the following article.

Note: LDAP can be OPENLDAP,IBM Dss,novel NDS and some other directory services.

How to use LDAP user Single sign-on to Horizon desktops and apps