VMware Identity Manager: What Is It and How to Download It
VMware Identity Manager is an identity and access management solution that provides secure and seamless access to SaaS, web, and native mobile apps. It also delivers a unified application catalog and user experience across different device types and operating systems. In this article, we will explore the features and benefits of VMware Identity Manager, how to choose the right edition and deployment model for your needs, and how to download it.
Introduction
Identity management is a critical component of any digital workspace, especially in today’s hybrid work environment where users need to access various applications from different locations and devices. However, managing user authentication can be challenging, as it involves multiple identity providers, protocols, policies, and security risks. Moreover, users expect a fast, easy, and consistent user experience when accessing their applications, regardless of the device or platform they use.
VMware Identity Manager is a solution that addresses these challenges by providing a single sign-on (SSO) and multi-factor authentication (MFA) service that integrates with various identity stores and providers. It also offers a unified application catalog that includes web, native, and virtual applications, as well as a consumer-like user experience that simplifies the user journey. Additionally, VMware Identity Manager enables risk-based conditional access and zero trust security by continually verifying device status and user identity.
VMware Identity Manager is available in different editions and deployment models to suit different organizational needs. You can choose between Standard, Advanced, or Enterprise editions, depending on the features you require. You can also deploy VMware Identity Manager on-premises or in the cloud, depending on your infrastructure preferences.
VMware Identity Manager Features and Benefits
Single Sign-On and Multi-Factor Authentication
One of the key features of VMware Identity Manager is its ability to provide secure and seamless access to SaaS, web, and native mobile apps with SSO and MFA. SSO allows users to log in once with their corporate credentials and access all their authorized applications without entering their passwords again. MFA adds an extra layer of security by requiring users to provide additional factors of authentication, such as a one-time password (OTP), a biometric scan, or a push notification.
VMware Identity Manager supports multiple authentication methods, such as password, certificate, Kerberos, RADIUS, SAML, OIDC , and FIDO. It also allows you to configure different authentication policies based on various factors, such as user group, device type, network location, app sensitivity, and device compliance. This way, you can enforce the appropriate level of security for each access scenario.
Unified Application Catalog and User Experience
Another feature of VMware Identity Manager is its ability to deliver a consistent and consumer-like user experience across devices and platforms. VMware Identity Manager provides a unified application catalog that includes web, native, and virtual applications, as well as desktops and files. Users can access their applications from any device, whether it is a laptop, a tablet, or a smartphone. They can also launch their applications from a web browser, a native app launcher, or a Workspace ONE app.
VMware Identity Manager integrates with Workspace ONE and other VMware products, such as Horizon, AirWatch, and ThinApp, to provide a comprehensive digital workspace solution. Workspace ONE is a platform that combines VMware Identity Manager with device management and application delivery capabilities. It allows users to access all their work resources from a single app on any device. It also enables IT administrators to manage and secure devices, applications, and data from a single console.
Risk-Based Conditional Access and Zero Trust Security
A third feature of VMware Identity Manager is its ability to enable risk-based conditional access and zero trust security. VMware Identity Manager follows the principle of “never trust, always verify” by continuously monitoring device status and user identity. It leverages Workspace ONE device enrollment, network and SSO policies, automated device remediation, and third-party information to assess the risk level of each access request. Based on the risk score, VMware Identity Manager can grant or deny access, or require additional verification.
VMware Identity Manager also integrates with VMware Carbon Black Cloud, a cloud-native endpoint protection platform that provides threat detection and response capabilities. VMware Carbon Black Cloud can detect and block malicious activities on devices and send alerts to VMware Identity Manager. VMware Identity Manager can then take actions to protect the user identity and the application data, such as revoking access tokens, resetting passwords, or locking devices.
VMware Identity Manager Editions and Deployment Models
Editions
VMware Identity Manager is available in three editions: Standard, Advanced, and Enterprise. Each edition offers different features and pricing options. The table below summarizes the main differences between the editions.
Edition | Features | Pricing |
---|---|---|
Standard | – SSO and MFA for SaaS and web apps – Unified application catalog – Basic conditional access policies – Basic reporting and analytics – Integration with Workspace ONE UEM |
$2 per user per month |
Advanced | – All features of Standard edition – SSO and MFA for native mobile apps – Advanced conditional access policies – Advanced reporting and analytics – Integration with Horizon Apps and Desktops – Integration with ThinApp |
$4 per user per month |
Enterprise | – All features of Advanced edition – SSO and MFA for virtual apps – Integration with Horizon Cloud – Integration with Carbon Black Cloud – Integration with third-party identity providers |
$6 per user per month |
To compare and choose the best edition for your organization, you can visit the VMware Identity Manager product page or contact a VMware sales representative.
Deployment Models
VMware Identity Manager can be deployed either on-premises or in the cloud. Each deployment model has its own advantages and disadvantages. The table below compares the main aspects of each model.
Aspect | On-Premises | Cloud |
---|---|---|
Infrastructure | – You need to provide your own hardware, software, network, and storage resources. – You have full control over the configuration, customization, and maintenance of your environment. – You are responsible for the security, availability, backup, and recovery of your data. |
– You use VMware’s cloud infrastructure as a service. – You have limited control over the configuration, customization, and maintenance of your environment. – VMware is responsible for the security, availability, backup, and recovery of your data. |
Scalability | – You need to plan ahead for your capacity needs and provision additional resources as needed. – You may face challenges in scaling up or down quickly to meet changing demand. |
– You can scale up or down easily and automatically to meet changing demand. – You pay only for what you use and avoid overprovisioning or underutilization of resources. |
Updates | – You need to manually download and install updates for your VMware Identity Manager software and components. – You have the flexibility to choose when and how to apply updates. – You may experience downtime or compatibility issues during the update process. |
– VMware automatically applies updates for your VMware Identity Manager service and components. – You have no control over the timing and frequency of updates. – You benefit from the latest features and security patches without any downtime or compatibility issues. |
Support | – You need to contact VMware support for any technical issues or questions. – You may have different support levels and SLAs depending on your contract. – You may need to provide logs, screenshots, or other information to troubleshoot your issues. |
– VMware provides proactive support and monitoring for your VMware Identity Manager service and components. – You have a standard support level and SLA for all customers. – VMware can access your environment remotely and resolve your issues faster. |
To decide whether to deploy VMware Identity Manager on-premises or in the cloud, you need to consider your infrastructure preferences, scalability needs, update requirements, and support expectations. You can also opt for a hybrid deployment model, where you can have some components on-premises and some in the cloud, depending on your use cases.
How to Download VMware Identity Manager
Prerequisites
Before you can download VMware Identity Manager, you need to meet some prerequisites. These include:
- Meeting the system requirements for your chosen deployment model and edition. You can find the system requirements in the VMware Identity Manager Installation and Configuration Guide.
- Agreeing to the license agreements for VMware Identity Manager. You can find the license agreements in the VMware Product Guide.
- Registering for a free trial or purchasing a subscription of VMware Identity Manager. You can register for a free trial or purchase a subscription from the VMware Identity Manager product page.
Steps
Once you have met the prerequisites, you can follow these steps to download VMware Identity Manager:
- Go to the VMware Customer Connect portal and log in with your credentials.
- Click on the Download Products tab and select VMware Identity Manager from the list of products.
- Choose the file type and version that matches your deployment model and edition. For example, if you want to deploy VMware Identity Manager on-premises with the Enterprise edition, you can choose the OVA file type and the latest version.
- Click on the Download button and save the file to your desired location.
- Verify the integrity of the downloaded file by comparing its checksum with the one provided on the portal. You can use a tool such as MD5 & SHA Checksum Utility to generate and compare checksums.
Conclusion
In this article, we have learned what VMware Identity Manager is and how to download it. We have also explored its features and benefits, such as SSO and MFA, unified application catalog and user experience, and risk-based conditional access and zero trust security. We have also compared its editions and deployment models, such as Standard, Advanced, or Enterprise editions, and on-premises or cloud deployment models. We hope that this article has helped you understand how VMware Identity Manager can help you manage user identity and access in your digital workspace.
If you want to learn more about VMware Identity Manager, you can visit the VMware Identity Manager documentation page, where you can find guides, tutorials, videos, blogs, forums, and more. You can also contact us if you have any questions or feedback. Thank you for reading this article!
Frequently Asked Questions
What is the difference between VMware Identity Manager and Workspace ONE Access?
VMware Identity Manager is the former name of Workspace ONE Access. Workspace ONE Access is the new name of VMware Identity Manager since version 19.03. Workspace ONE Access is part of the Workspace ONE platform that combines identity management with device management and application delivery.
How do I integrate VMware Identity Manager with Active Directory?
You can integrate VMware Identity Manager with Active Directory with VMware Identity Manager in two ways: Active Directory over LDAP or Active Directory over Integrated Windows Authentication (IWA). The choice depends on your Active Directory environment and your preferences. Here are the main steps for each method:
Active Directory over LDAP
- In the VMware Identity Manager console, click the Identity & Access Management tab and then click Add Directory.
- Enter a name for the directory and select Active Directory over LDAP as the type.
- Enter the Base DN, Bind DN, and Bind password for your Active Directory domain. You can also enable SSL/TLS and provide the CA certificates if required.
- Select the user attributes and filters that you want to sync from Active Directory. You can also add custom attributes if needed.
- Select the groups that you want to sync from Active Directory. You can also enable nested group memberships if needed.
- Review the summary and click Sync Directory to start the sync process.
Active Directory over Integrated Windows Authentication
- In the VMware Identity Manager console, click the Identity & Access Management tab and then click Add Directory.
- Enter a name for the directory and select Active Directory over Integrated Windows Authentication as the type.
- Enter the user name and password of the Bind user who has permission to query users and groups for the required domains.
- Select the user attributes and filters that you want to sync from Active Directory. You can also add custom attributes if needed.
- Select the groups that you want to sync from Active Directory. You can also enable nested group memberships if needed.
- Review the summary and click Sync Directory to start the sync process.
For more details on how to integrate VMware Identity Manager with Active Directory, you can refer to the Configuring Active Directory Connection to the VMware Identity Manager Service guide or the Integrating with Active Directory page. You can also find helpful resources on the Integrating VMware Identity Services with Azure Active Directory page or the vRealize Automation 8.x Authentication and how to add Active Directory to VMware Identity Manager blog.
bc1a9a207d
Leave a Reply