I want to use identity manager as a portal to access Horizon Apps and desktops.
To achieve this I would place identity manager behind a loadbalancer in DMZ with a connector in the internal network (for active directory integration).
Internal users will then connect to idm and start their virtual desktop/published application from there.
For external users I would place UAG's in the DMZ and redirect external users (based on network range) to these UAG's.
Is this a common design, according to VMware's best practices? Or are there better ways to implement this?
Thanks for the feedback.