VMware workspace one

Introduction

This guide will detail the various steps required to integrate VMware workspace one as a SAML provider for your env0 organization. The current implementation is used for authentication only, where you define your users in your workspace one account to enable them access to your env0 organization.

Steps

Login to your workspace one account and go to the Home tab.
Under Services you should see Workspace ONE Access, click on the Manage button.

In the Workspace One Access go to the Catalog tab.
Click on the New button.
Enter under the name textbox - env0
Add a description, icon, and select the category of the app, and click on the Next button.
In the Authentication Type choose SAML 2.0
In the Configuration choose manual.
In the Single Sign-on URL and Recipient URL enter the following: https://login.app.env0.com/login/callback?connection={YOUR_ENV0_ORG_ID}
In the Application ID enter the following: urn:auth0:env0:{YOUR_ENV0_ORG_ID}
Username Format should be Unspecified
Username Value should be ${user.userName}
Click on the Advanced Properties link.
In the Request Signature and the Encryption Certificate enter the data found in this file here.
Under the Custom Attribute Mapping section add the following:

Name	Format	Value
email	Basic	${user.email}
firstName	Basic	${user.firstName}
lastName	Basic	${user.lastName}
name	Basic	${user.firstName} ${user.lastName}

Click on the Next button.
Choose the relevant Access Policy and click on the Next button.
Make sure the summary is correct and click on `Save and Assign”.
Assign the relevant users.
Go back to the Catalog tab.
Click on the Settings tab.
Click on the SAML Metadeta
Download the Signing Certificate
Close the Settings modal, and click on the env0 application you have just created.
Copy the Launch URL and send it to us.
Please upload the Launch URL and the Certificate you have downloaded to https://www.env0.com/env0-setup-saml-single-sign-on.