You can add Web applications to your catalog that are not listed in the cloud application catalog. You create an application record when you add the Web application.

When you successfully complete the application record for a Web application, an entry is created in your catalog that points indirectly to the Web application, and the Web application and the VMware Identity Manager service can use SAML to communicate with each other.

You can apply an access policy to control user access to the application. If you do not want to use the default access policy, create a new one. See VMware Identity Manager Administration Guide for information about managing access policies.

1

In the administration console, click the Catalog tab.

2

Click Add Application > Web Application ...create a new one.

The application record is added to your catalog, and the system displays the record's Details page.

3

Complete the information on the Details page, and click Next.

Form Item

Description

Name

Provide the name of the application.

Description

(Optional) Provide a description of the application.

Icon

(Optional) Click Browse to upload an icon for the application. Icons in

PNG, JPG, and ICON file formats, up to 4 MB, are supported. Uploaded icons are resized to 80px X 80px.

To prevent distortion, upload icons where the height and width are equal to each other and as close as possible to the 80px X 80px resize dimensions.

Authentication Profile

Specify the appropriate federation protocol, if any.

4

In the Configuration page, edit the application record's configuration details as necessary, and click Save.

Some of the items on the form are prepopulated.

When the SAML 2.0 POST Profile is selected on the Details page, the Configuration page includes the Configure Via section. Use the options in the Configure Via section to specify how the application metadata is retrieved. You can select retrieval by auto-discovery URL, meta-data XML, or manual configuration.

Option

Action

Auto-discovery (meta-data) URL

If the XML metadata is accessible on the Internet, provide the URL.

Meta-data XML

If the XML metadata is not accessible on the Internet, but is available to you, paste the XML in the text box.

Manual configuration

If the XML metadata is not available to you, complete the XML manual configuration items.

5

Select the Entitlements, Licensing, and Provisioning tabs and customize the information as appropriate.

Tab

Description

Entitlements

Entitle users and groups to the application. You can configure entitlements while initially configuring the application or anytime in the future.

Access Policies

Apply a Web application-specific access policy to control user access to the application.

Licensing

Configure license tracking. Add license information for the application to track license usage in reports.

Provisioning

Select a provisioning adapter, if applicable. Currently, a provisioning adapter is available for Google Apps. See Using the Google Apps Provisioning Adapter for more information.

Provisioning provides automatic application user management from a single location. Provisioning adapters allow the Web application to retrieve specific information from the VMware Identity Manager service as required. For example, to enable automatic user provisioning to Google Apps, user account information, such as the user name, first name, and last name must exist in the Google Apps database. An application might require other information, such as group-membership and authorization-role information.

See Entitling Users and Groups to Web Applications for details about adding user and group entitlements for Web applications.