VMware Workspace ONE Access

VMware Workspace ONE Access (now Broadcom / Omnissa Access) is an enterprise identity and access-management solution providing SSO, MFA, and device-context enforcement across hybrid environments. It acts as a standards-based IdP and policy broker for apps integrated through SAML 2.0 or OpenID Connect 1.0, and ties closely to Workspace ONE UEM for device posture and lifecycle management.

Key Capabilities

  • Standards-based federation (IdP & broker): Natively supports SAML 2.0 and OpenID Connect 1.0. Administrators can configure external identity providers and allow Access to act either as the primary IdP or as a federation broker that relays assertions/tokens between IdPs and apps.

  • OAuth 2.0 / OIDC administration: Admin documentation covers creation of service clients and user access-token clients, used with Workspace ONE UEM and connected SaaS/on-prem apps.

  • SCIM provisioning (inbound): Official integration guides show SCIM 2.0 user and group provisioning from Okta into Access using the Workspace ONE app listed in the Okta Integration Network.

Limitations

  • FIDO2 availability: Documented only for SaaS tenants; confirm parity for on-prem implementations.

  • SCIM directionality: Public references show inbound SCIM into Access; no confirmation that Access can act as a general-purpose outbound SCIM 2.0 provisioner.

  • Advanced OAuth profiles: Available materials focus on core OAuth 2.0/OIDC; PAR, DPoP, or mTLS-bound tokens/FAPI are not publicly verified.

Customer Identity, Simplified.

No Complexity. No Limits.
Thousands of businesses trust LoginRadius for reliable customer identity. Easy to integrate, effortless to scale.

See how simple identity management can be. Start today!
Free Trial
Contact Sales