VMware Horizon Community
sandhog
VMware Employee
VMware Employee
‎03-28-2020 04:25 PM

True SSO with UAG

IHAC with Smart Card (DOD CAC) log in requirements leveraging the True SSO technology. Basically, the True SSO documentation is very well defined for smart cards while the user is logging internally within the network environment. However, looking for information regarding UAG configuration to support an external user to log in using the UAG configured as SAML & Pass-Through:

- WS1 (vIDM) 19.03

- UAG 3.9

- Horizon 7.11

Questions:

-     Do the UAG needs to be configured with any sort of SAML configuration if in fact it is only passing through?

-     Do the UAG interface should point to the vIDM or to the connection server?

Any documentation on this area is greatly appreciate as well and thank you!

Sandognr1

0 Kudos
2 Replies
frandelgado93
VMware Employee
VMware Employee
‎04-22-2020 04:59 PM

If you are using the virtual app collection of horizon on the WS1 Access 19, you will configure the UAG as only pass through.  Workspace one access will insert the SAML Assertion in to the Horizon CS server through the UAG.  "Uag interface"  I guess you reffer to the horizon service on the UAG, you have to point to the CS FQDN or IP.

0 Kudos
chriskoch99
Enthusiast
Enthusiast
‎10-13-2020 09:47 AM

Did you ever figure this out?  Wondering the same, myself.

0 Kudos