Integration of VMware Identity Manager with CAs, Keycloak

Source: Internet
Author: User
Tags cas ldap protocol

Vmwareidentity Manager ( VIDM) is a powerful set of identity management systems developed by VMware. Users can use this system to achieve enterprise-class applications (including SAAS, virtual applications and desktops, native mobile applications,WINDOWS10 applications, etc.) Single sign-on, self-service store, multiple device support, policy-based access control, and more. In a nutshell: Customers can use the system to access applications or data on a private data center or public cloud platform, anytime, anywhere, on a variety of devices.

Many customers in China have developed their own identity authentication system to achieve single sign-on. These customers either didn't use the advanced features of VIDM in the first place, or could not abandon the original system, and start anew. These customers want to retain existing authentication systems, single sign-on access to VMware 's virtual applications or desktops. So the question is, how to integrate two sets of identity authentication systems (IDM).

Fortunately,VIDM is a SAML -compliant system that can provide authentication capabilities to other applications as SAMLIDP, as well as Saml SP and other compliant the SAML standard authentication system is integrated.

650) this.width=650; "Src=" https://s2.51cto.com/wyfs02/M02/8C/E4/wKioL1h86yKQJ05oAAD05mhxTZQ403.png-wh_500x0-wm_ 3-wmp_4-s_3667863568.png "title=" 1.png "alt=" Wkiol1h86ykqj05oaad05mhxtzq403.png-wh_50 "/>


in China, many customers ' The IDM system is developed on an open-source platform, such as CAS(centralauthentication Service), Keycloak (HTTP/ www.keycloak.org/). These open source platforms can support the SAML protocol. VIDM can configure third-party IDM systems as their third-party IDP, and a VIDM system can support the configuration of multiple third-party IDP. The user identity database of the VIDM system itself can be either Microsoft AD or any platform that supports the LDAP protocol, such as OpenLDAP, IBM Directory server, and so on.

VIDM The ability to use the SAML protocol to delegate authentication requests to third-party IDM so that the client logs on to an existing IDM platform, thereby single-sign on to the VIDM platform-protected application, such as a virtual desktop.

is a VIDM and third-party IDM systems are integrated into the architecture. Detailed documentation on VIDM and CAS as well as Keycloak integrated solutions will be available in the following articles.


About the SAM Zhao,euc Solution department Manager. 13 years of IT experience in software development, testing, project management, five patents and a combined book

This article is from the VMware End User Computing blog, so be sure to keep this source http://vmwareeuc.blog.51cto.com/8606576/1892430

Integration of VMware Identity Manager with CAs, Keycloak

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.