As SAML is highly interoperable, VMware is leveraging SAML version 2.0 to transfer the authentication request and response to any supported IdP solution including VMware Identity Manager, Active Directory Federation Services (ADFS), Okta, Shibboleth, OneLogin, or any other SAML 2.0 compliant IdP.

This provides:

One set of credentials across applications

Unified and centralized user management

Unified authentication

Unified access control

SSO to vCloud Air.

Federate vCloud Air Authentication Requests to On-premises SAML 2.0-based IdP Solution

You can keep your existing corporate user directory and login portal and use it for Access Control:

vCloud Air access tied to corporate user group membership

Corporate user directory changes propagate to vCloud Air

vCloud Air provisioning and de-provisioning is driven by corporate user directory.


With vCloud Air, you will only need SAML 2.0 compliant IdP.

Federation events typically have a short Time to Live (TTL). To avoid errors based on time-outs, ensure that all computers have their clocks synchronized.