SSO Validation
In this section, we will validate that the SSO configuration is working on our iOS device.
1. Open Settings
Tap Settings.
2. Navigate to General Settings, Digital Workspace
- Tap General.
- Scroll down to find the Device Management option.
- Tap Device Management.
3. Open the Digital Workspace profile
Tap the Workspace Services profile.
4. View More Details
Tap More Details.
5. Open the Singe Sign On Account
You should see the Single Sign On Account that you added in the Profile created in the previous section.
Tap testsso.
6. Verify Settings
Verify that the following Single Sign-On settings are correct:
- Principal Name is set to "aduser".
- Realm is set to VIDMPREVIEW.COM.
- URL Prefix Matches is set to "https://{tenantName}.vidmpreview.com/". This URL will be your VMware Identity Manager Tenant URL.
- Eligible App IDs includes "com.apple.mobilesafari".
NOTE - If any of these settings are incorrect, return to the AirWatch Console and inspect your iOS Identity KDC Cert Profile that was previously created.
7. Clear the Safari Cache
Navigate back to the main Settings page.
- Scroll down to find the Safari settings.
- Tap Safari.
- Scroll down to find Clear History and Website Data.
- Tap Clear History and Website Data.
8. Confirm the Clear History and Data Prompt
Click Clear.
9. Launch Safari on the iOS Device
Tap the Safari icon, it should be on the bottom tray.
10. Navigate to Identity Manager in Safari
- Enter the URL of your Identity Manager tenant in the URL bar.
- Click Go
11. Workspace One Single Sign-On
Notice that Identity Manager is signing you in without requiring any authentication.
12. Identity Manager Application Catalog
You are now signed into Workspace One using Single Sign On automatically without having to enter any credentials!
There are no applications visible because they haven't been added in Identity Manager or AirWatch.