Highlighted
Contributor
Contributor

6.5 PSC - STS Communication with Identity Management

  1. User attempts to authenticate to SSO
  2. STS service generates a token and signs it with its certificate
  3. STS then communicates with the identity management service to verify the user in AD or wherever?
  4. STS or identity management hand over the token to the user?
  5. User presents token to the VMware software

Is there a concise explanation of how this works someplace, maybe with a few pictures?

0 Kudos
4 Replies
Highlighted
Hot Shot
Hot Shot

This infographic should help you understand this process better

7777.jpg

Cheers, Paul Wilk
0 Kudos
Highlighted
Contributor
Contributor

Where did you get that diagram? Is there an associated explanation for each step?

0 Kudos
Highlighted
Hot Shot
Hot Shot

This is an official VMware diagram which can be found in SSO documentation for vSphere. I recommend reading through this doc:

VMware vSphere 5.1

Understanding vCenter Single Sign-On

Cheers, Paul Wilk
0 Kudos
Highlighted
Contributor
Contributor

This URL has steps associated with the diagram you provided. However, these steps are different from the vSphere 6.5 documentation for SSO.

I'm assuming that the diagram you provided is for 5.1 and not 6.0/6.5.

0 Kudos