This guide provides instructions to configure Active Directory Federation Services (AD FS 3.0 or higher) to utilize VMware Identity Manager as the claims provider for all application authentication requests coming from mobile devices. AD FS will delegate/forward all mobile authentication requests to VMware Identity Manager. As part of user authentication flow, VMware Identity Manager can apply conditional access polices including location, device type, user type, mobile SSO and device compliance check.