Author: Felix Block, @fligh_MUC
Purpose of this article is to give you some best practices around cleaning a Windows 10 image to allow a Sysprep and the use of this image in Horizon Cloud on Azure. I faced a lot of problems when customer create a master image in Horizon Cloud on Azure due to AppX Packages in Windows 10. Very often the Sysprep failed and the VDI Assignment can’t be created. I collected below my tasks I personally do before sealing a Windows 10 to an Image.
Playing around with Access Policies in VMware Identity Manager you can very easily lock yourself out.. Often you see a message similar to this one:
Luckily it is very easy to regain access. Simply type in /SAAS/login/0 at the end out your FQDN / Tenant address and you should be able to login using the System Domain and one of your local Admin accounts.
A while ago I wrote about Certificates and how to convert between different encodings (https://blogs.vmware.com/horizontech/2018/08/vmware-identity-manager-and-certificates.html). While the post was mainly for VMware Identity Manager customers many of VMware’s products make use of the same certificate basics.
Felix Block, @fligh_MUC, is a colleague of mine and he pointed out a couple Horizon Cloud specific requirements when it comes to certificates.. So here’s his notes on the topic.
Are you struggling with uploading a new certificate to your VMware Identity Manager? Well, you are not alone.
But it isn’t that hard. You just need to know what the requirements are and then it is a matter of converting your existing certificate or building the chain correctly. In this blog post I’ll try to explain the process.
In this blog post I will collect technical related links regarding VMware Unified Access Gateway. The idea is to keep this blog post alive and add more how-to / reference material as they become available.
Updated: 6 August 2018 (added links)
I get a lot of questions about how to solve Single Sign-On (SSO) of users between two Active Directories without trust. Using the federation protocol SAML and VMware Identity Manager this is easy to achieve.
In my example we have two Domains, A and B. Users in Domain A wants to access resources in Domain B without being prompted for username or password. Continue reading
This post documents the Network Ports used by VMware Identity Manager. Most of the ports are only required when using specific features in VMware Identity Manager. Click on the pictures to get the original size.
The Ports listed are the defaults.
Updated 14 November 2018.
With VMware Identity Manager 2.8 we introduced support for User Provisioning in Office 365/Azure AD.. This blog post will walk you through the process of configure VMware Identity Manager to provide both Office 365 User Provisioning and Federation.
VMware Identity Manager support integration with a wide range of third party Identity Providers such as ADFS, Ping Federate and many, many more. The integration is based on SAML.
This blog post will explain how to use Azure AD as a trusted Identity Provider (IdP) in VMware Identity Manager.