Click Select for the IDP Metadata field.

1. Click Downloads.
2. Click idp.xml.
   NOTE: This is the Identity Provider Metadata XML you downloaded from the VMware Identity Manager tenant in previous steps.
3. Click Open.

Click Save.

NOTE: It may take a moment to save the configuration after you click Save.  Please do not click multiple times, the page should update after 5 - 10 seconds.

After hit Save, you should receive a pop-up message showing "Configuration is saved successfully".

NOTE: The Entity ID will be detected from the IDP metadata XML, so no need to enter this manually.

1. Enter HTTP/[email protected] for the Principal Name.
2. Click on Select for the Keytab File.

1. Click Local Disk (C:).
2. Click it.keytab.
   NOTE: This is the keytab file you generated from a previous step by running the ktpass command from the Command Prompt.
3. Click Open.

Click Save.

NOTE: It may take a few seconds for the console to update after you click Save.  Please do not click Save multiple times, the page will refresh automatically within a few seconds.

After hit Save, you should receive a pop-up message showing "Keytab upload is successful".

NOTE: The first Principal Name found on the Keytab file will be used when not provided, if your Keytab contain multiple Principal Names it's recommend that you inform the Principal Name to be used.

Click Add.

1. Enter CORP.LOCAL for Name of the realm.
   NOTE: This entry MUST BE IN CAPITAL.  It is advised to copy the value directly or drag-and-drop the text from the manual for accuracy.
2. Enter corp.local for Key Distribution Centers.
3. Enter 3 for KCD Timeout (in seconds).
4. Click Save.

After you click Save, you should receive a pop-up message showing "Configuration saved successful"

Click Close.

Select the Gear icon for the itbudget Reverse Proxy Instance.

1. Click NO to show the Enable Identity Bridging, it will switch to YES after you enable it.
2. Select SAML for Authentication Types.
3. Select https://vidm.airwlab.com for Identity Provider.  This Identity Provider was made available with the IdP Metadata XML you uploaded from the previous steps.
4. Select HTTP/[email protected] for Keytab.  This Keytab was made available with the Keytab file you uploaded from the previous steps.
5. Enter HTTP/[email protected] for Target Service Principal Name.
6. Enter / for Service Landing Page.
7. Click Download SAML service provider metadata, this will open another screen.

NOTE: Do NOT click save yet! Continue to the next step.

1. Enter uag-internet.corp.local for External Host Name.
   NOTE: This is the internet facing NIC that was configured for the Unified Access Gateway appliance during deployment using the .ini file with PowerShell.
2. Click Download.

NOTE: It may take a moment for the download to start after clicking Download.  Please wait a moment and do not click Download multiple times!

A file named uag-internal.corp.local.xml will be download into the Downloads folder, this file will be used during the Web App setup in VMware Identity Manager.

If you are prompted to keep or discard the uag-internet.corp.local.XML download, click Keep.

1. Scroll down until you see the button Save
2. Click Save

Confirm the Configuration is saved successfully message is displayed.

Click Close