The Community

Stay up to date…

VMware End-User Computing Blog Bringing you the latest VMware EUC news, trends and product innovations.

Adam Matthews Unified Endpoint Management // Technology

  • Quickly Compress Video Files on macOS
    by adam on January 26, 2022 at 11:29 am

    When you record your videos with Quicktime and you end up with 1.7 GB of a file, how do you shrink that?! I’ve been using this process for a couple of years now to optimise the output size of my demo videos, to make it easier to share them in presentations, and to keep my … Continue reading "Quickly Compress Video Files on macOS"

  • WordPress – How to fix Jetpack connection errors, Fonts and Icons showing as squares with NGINX
    by adam on March 5, 2021 at 5:24 pm

    I recently migrated https://blog.eucse.com/blog from running on Apache to Nginx. I found it helped a lot with utilization and speed (combined with a few more tweaks), but one thing I noticed after was Jetpack wouldn’t load correctly, and some fonts and icons were showing as squares. See examples of what I was seeing below: Resolution … Continue reading "WordPress – How to fix Jetpack connection errors, Fonts and Icons showing as squares with NGINX"

  • How to correctly encode special characters for PHP cURL using Postman
    by adam on January 19, 2021 at 3:12 pm

    How to properly and correctly encode special characters for cURL requests for PHP using Postman.

  • vfuse: How to solve “Error: VMware Fusion.app is not running”
    by adam on September 8, 2020 at 10:07 pm

    Struggling with "Error: VMware Fusion.app is not running" in vfuse? You may have tech preview of Fusion installed or the Application path isnt being found. Heres how to fix it!

  • Set all Horizon Client’s to Auto-Connect, or not without user involvement
    by adam on April 18, 2020 at 5:44 pm

    How can we set all existing Horizon clients to not automatically connect to a desktop pool? In this article we cover how to achieve this using ADSI Edit and PowerShell. ** DISCLAIMER ** - This is not intended for use on a production platform

Arsen Bandurian: Technical Blog Digital Workspace, End User Computing, Enterprise Mobility, AutoID, WLANs, OSes and other technical stuff I happen to work with

  • Clean up references to your custom domain name from an Azure AD test tenant
    by apcsb on October 5, 2021 at 11:50 am

    Today I needed to move my custom domain name from an old (and messy) AAD test tenant to a (sparkling) new one. Problem is, you can’t simply delete the old custom name, since your user’s UPNs and Email addresses are using it (AAD actually presents a nice screen, showing all the dependencies, but I am... Continue Reading →

  • Viewing the encrypted Apple profiles in Workspace ONE UEM console
    by apcsb on May 18, 2021 at 7:30 am

    Apple has an option to encrypt the MDM profile payloads (both iOS and macOS). But then when you try to view the profile XML in the console (ex. migrating payloads between UAT and Production environments, working with custom profiles) – they are encrypted! Turns out, there is a way to view the XML w/o having... Continue Reading →

  • Integrating Workspace ONE reporting with PowerBI
    by apcsb on April 12, 2021 at 7:30 am

    Last week one of my customers asked if Workspace ONE data could be used in PowerBI. Since Workspace ONE Intelligence Reports are included in every WS1 edition and are accessible via API – this is the easiest way to expose data to external systems. But how exactly? Even though I’ve never used PowerBI before, after... Continue Reading →

  • Adding FIDO2 + Windows Hello fingerprint auth to Workspace ONE
    by apcsb on March 16, 2021 at 7:30 am

    This will be a short “recipe” type of post on how to showcase a new feature that was introduced in latest Workspace ONE Access SaaS release (sorry, no news for on prem now): FIDO2 auth. The video shows Yubikey, which I don’t have, so I will be using Windows Hello (which in turn will use... Continue Reading →

  • App version management in Android Enterprise – Managed Play Closed Tracks and their nuances
    by apcsb on March 1, 2021 at 7:30 am

    If you think my titles are wordy, check the official title of good old Robinson Crusoe! Anyway, today we will look at two important things: Using Managed Google Play feature called Closed Tracks to control app versions and update cycles in two scenarios: Multiple “deployment rings” for different device groups Developer having customers with different... Continue Reading →

  • AER dropped the 3/5 year update mandate with Android 11, where are we now?
    by Jason Bayton on January 11, 2022 at 5:58 pm

    Continuing on from losing my bet with Google, I’ve been spending some time with the Android security transparency report and ended up taking a long, hard look at the impact of dropping the Android 10 & below requirement for devices to receive 3/5 years of updates in order to be recommended by Google. For those who missed it, the AER requirements for Android 11 changed from a minimum update term, to the following: Google never publicly published the 3 year mandate for knowledge worker devices – for reasons unknown – but it was there nevertheless. The new requirement would make ... read more.

  • I made a bet with Google (and lost)
    by Jason Bayton on January 11, 2022 at 5:57 pm

    The year is 2020. The topic? Update prevalence & support within the Android ecosystem. Google had not long dropped the requirement mandating three* years of security updates for AER devices in favour of OEM update transparency statements – which is still a bad idea in my opinion – and I found myself expressing displeasure at the thought of long term support akin to iOS and desktop operating systems rapidly returning to little more than the pipe-dream it had been for so long. Around the same time, Google published their annual Android Security Transparency report showing an ever-improving percentage of ecosystem ... read more.

  • On building Android devices
    by Jason Bayton on December 26, 2020 at 6:21 pm

    As 2020 comes to a long-overdue close and we head into what anyone can hope will be a slightly less chaotic new year, it also edges closer to what will soon be two years leading product with Social Mobile. With the results of all the hard work now materialising, I think it’s interesting to reflect on the last >18 months, what it’s lead to, and what’s next. Note: The following is a personal take on a work-related topic. For normal Android Enterprise content, please head here. The leadup I’ve spent many years on the consumer end of Android, from devices ... read more.

  • Google announce big changes to zero-touch
    by Jason Bayton on November 10, 2020 at 3:09 pm

    Google today dropped the most significant update to zero-touch since its introduction with the Google Pixel back in 2016! Rolling out over the next several months, all GMS certified Android devices – new and existing – running 9.0 or above will support zero-touch by default, with no additional OEM effort required. Why does this matter? Zero-touch, Google’s equivalent of Apple’s Device Enrolment, Samsung’s Knox Mobile Enrolment, and Microsoft’s Autopilot, allows for the assignment of a device to a customer-defined EMM platform before it’s even taken out of the box. It means I as a customer can purchase devices from a ... read more.

  • VMware announces end of support for Device Admin
    by Jason Bayton on October 1, 2020 at 3:23 pm

    This week, VMware announced their intention to end support for Device Admin based Android management. A topic I’ve covered in depth since Google’s announcement way back at the end of 2017, this has been a long time coming (so long), and trends with the wider ecosystem adoption of Android Enterprise over the last few years as Device Admin functionality has slowly but surely eroded away with each major Android release. 3 years on from that announcement it’s clear however DA isn’t going away as rapidly as some would hope; whether that’s due to slow device refresh cycles (some industries take ... read more.

The Bearded Wonder From Down Under All things VMware Workspace ONE, Identity and everything in between.

Brooks Peppin's Blog Managing Windows in the Modern Workplace

Many Miles Away IT guy from Down Under

My Blog Camille Debay

  • Add vRealize Operation Manager in the WS1 App Catalog
    by Camille Debay on September 14, 2020 at 7:47 pm

    When you integrate vRealize with WS1 Access, users are going to be authenticated using the OAuth method. the problem is… The post Add vRealize Operation Manager in the WS1 App Catalog appeared first on My Blog.

  • Windows 10 Join Method Overview
    by Camille Debay on August 12, 2020 at 6:40 pm

    In the past on Windows, you had 2 options: Domain join or Workgroup.Windows 10 add more options which can be… The post Windows 10 Join Method Overview appeared first on My Blog.

  • Workspace ONE UEM – PowerShell Profile
    by Camille Debay on November 20, 2019 at 11:48 am

    We can do a lot of things in Workspace ONE UEM especially when it comes to custom profile. We can… The post Workspace ONE UEM – PowerShell Profile appeared first on My Blog.

  • WNF and Task Scheduler
    by Camille Debay on November 11, 2019 at 10:00 am

    As I was investing another subject, I came across a scheduled task with a custom trigger and when I looked… The post WNF and Task Scheduler appeared first on My Blog.

  • PowerShell – UTF8 and BOM
    by Camille Debay on October 3, 2019 at 11:55 am

    When you save something as UTF-8 in PowerShell, it, most likely, will be as UTF-8 with BOM. This can be… The post PowerShell – UTF8 and BOM appeared first on My Blog.

Mobile Pros Run by mobility professionals, for mobility professionals

  • The state of Mobile security 2019
    by Rusell Mohr on July 15, 2019 at 1:48 pm

    This is a companion article to Mathew Shaver’s excellent piece on the state of UEM in 2019. Matthew covered changes Apple and Google recently made in their approaches to device management, and how industry needs to adapt to a new reality. Citing the film, “The Right Stuff,” Matthew illustrated our collective inertia in responding to

  • State of UEM 2019
    by Matthew Shaver on June 25, 2019 at 11:48 pm

    There is a moment in the great space race film, The Right Stuff, where Jeff Goldblum sprints down a lengthy hallway, bursts in to a room full of shadowy men in dark suits, and exclaims “It’s called Sputnik!” (referring to the Russian space program). “We know” “Sit down” the shadows call back. Lyndon B. Johnson

  • Apple WWDC19 Recap: Enterprise-a-palooza
    by Aaron Freimark on June 13, 2019 at 1:11 am

    Apple’s annual developer conference took place last week, and it was a doozy. The enterprise-focused announcements were tremendous, especially when compared with previous years. I’m going to summarize here the most important announcements for enterprise. This focuses on iOS (and iPadOS), and more or less ignores macOS and tvOS. For a more consumer-focused summary of

  • A review of the Google Pixel 3a
    by Jay Allen on June 4, 2019 at 10:32 am

    Possibly one of the best Mid-range devices! Early Days So it’s been nearly two weeks with the new Google Pixel 3a and I have to admit so far the experience has been a good one! As a long term iPhone user both in my professional and personal life, my experience with Android has been mostly

  • Device Enrollment Program (DEP) – Admin & End User Benefits and Challenges
    by Adrian Patrascu on March 19, 2019 at 3:03 pm

    DEP, or the Device Enrollment Program, was announced by Apple in 2013, and rolled out in February 2014, to automate and simplify both enterprise and school bulk enrollment into Enterprise Mobility Management (EMM) environments. DEP empowers Apple, Apple authorized resellers, and carriers to register iOS, macOS, and tvOS devices with the EMM server so that

Sam Akroyd Thoughts on Tech

  • Using Workspace One Sensors with Freestyle Orchestrator
    by Sam Akroyd on December 3, 2021 at 10:26 am

    This is a very short post, just showing anyone who is vaguely interested on how to use Workspace One sensors to get additional information on your Windows 10 devices into your WS1 environment. Workspace One has a feature known as sensors, which are essentially small scripts that can be deployed to your endpoints in order

  • Hands on Labs & TestDrive
    by Sam Akroyd on November 22, 2021 at 1:02 pm

    Literally the quickest post I’m ever going to make. But as a customer, this is something I didn’t know about as a customer, and its something I really wish I did. So why do you care? Cause its free access to the VMware products and services to play around with in your own time! OK,

  • VMworld 2021 Highlights
    by Sam Akroyd on October 18, 2021 at 1:16 pm

    So VMworld 2021 has come and gone, but with it came a whole host of awesome announcements, new products and new features galore. Given the huge number of sessions, and that we don’t have all day and night to tune in, I thought I’d put up a blog post with a few highlights that I

  • Tanzu Community Edition on MacOS
    by Sam Akroyd on October 6, 2021 at 10:53 am

    It’s been a while since I’ve done a ‘How To’ post, mainly because I’ve been spending my time talking to customers and less time hands on recently. An area I’ve always been intrigued about but never had chance to play with, is containerisation. Thankfully @VMware came to my, and hopefully a few others, with a

  • VMworld 2021 Session Previews
    by Sam Akroyd on August 18, 2021 at 1:07 pm

    So, my favourite event of the year is nearly upon us again (Sounds biased but I loved it even before I joined VMware). Again, its online, and although I miss the face-to-face side of things, registration is free so there are no cost barriers to attending, which is a great thing. I’ve put together a

  • Igel UDP and VMware Workspace ONE
    by techhub981158167 on January 26, 2022 at 12:59 pm

    Apologies for the delay in posting, I had hoped to start posting new content earlier in the month but I hit a couple of delays. That said, in this video you will see how to enrol an Igel UDP into VMware Workspace ONE UEM using the Intelligent Hub as well as see how Sensors are … Continue reading Igel UDP and VMware Workspace ONE →

  • Happy Holidays and thanks…..
    by techhub981158167 on December 24, 2021 at 9:21 am

    As the end of the year approaches I just wanted to thank all of those that visit my pages and wish you a Happy Holidays. I have a few draft posts already for next year and as always I hope to make a little more time for posts and videos. See you in 2022.

  • Praim Agile 4Linux
    by techhub981158167 on November 26, 2021 at 12:23 pm

    Over the last few years I have been testing the various desktop repurposing solutions in the market which has included Praim, however when they released a new solution to the market I was keen to test that too. The Praim Agile 4Linux solution is based on Ubuntu making it flexible and versatile. What I mean … Continue reading Praim Agile 4Linux →

  • Horizon Client for Chrome – Beta
    by techhub981158167 on November 26, 2021 at 12:20 pm

    For the last couple of days I have been testing the latest Horizon Chrome beta client, version 2111. For the majority of the time I was connected to a corporate Desktop so that I could do my typical day to day work, I thought that the 206ms latency would be more of an hinderance that … Continue reading Horizon Client for Chrome – Beta →

  • Workspace ONE Intelligent Hub – Demo Mode
    by techhub981158167 on October 22, 2021 at 9:24 am

    If you don’t currently use the Workspace ONE Intelligent Hub but wondered what it looked like, fear not, there is a demo mode available. Simply install the Intelligent Hub from the App Store and after launching it rather than authenticating against a Workspace ONE UEM tenant simply click the demo mode link at the bottom. … Continue reading Workspace ONE Intelligent Hub – Demo Mode →

Thomas Cheng Welcome to my digital home!

  • ‘Your Payment Information Needs To Be Updated’ when purchasing an app within Apple Business...
    by techiecheng on January 10, 2022 at 4:54 pm

    After selecting an app to purchase, assigning to an UEM environment and specifying the quantity, I then clicked on the Get button like I normally would to complete the transaction. This time, however, I was prompted with the below: I then went to Settings and couldn’t quite figure out what might be missing under Apps

  • “Failed to CheckOut. Check out LG is not authorized.” when logging into a shared iPhone/iPad...
    by techiecheng on November 15, 2021 at 4:29 pm

    Upon logging into the Hub app on a shared iPhone/iPad with a specific account, I received the error ‘Failed to CheckOut. Check out LG is not authorized.‘ This occurs with just about any shared device. It turns out this Active Directory account had the ‘Enrollment Organization Group‘ set at a lower level while the shared

  • Updating Certificates for Workspace ONE UEM Services
    by techiecheng on June 16, 2021 at 2:00 pm

    08/17/20: Post updated with latest links on APNs certificate renewal. I subscribed to the knowledge base articles within the VMware Workspace ONE customer portal, and the one below flew into my inbox a few weeks ago. Updating Certificates for Workspace ONE UEM Services (last modified on 08/19/19) Hopefully, you or someone at your team take

  • ‘Your request to install failed!’ when installing managed Google app on Android Enterprise...
    by techiecheng on May 5, 2021 at 3:00 pm

    We recently published an app to our app catalog for Android users. For some reason, however, our Android Enterprise users encountered the error below after initiating the install. ‘Your request to install failed! Please refresh, retry then contact your IT Administrator if this problem persists.‘ To resolve, start by logging onto Managed Google Play. I

  • Dual SIM setup on iPhone XS and above
    by techiecheng on April 14, 2021 at 4:00 pm

    In various TV shows and movies, oftentimes criminals are seen swapping out SIM cards on burner phones to keep themselves and their activities under the radar.  Kevin Mitnick, a famous hacker and the author of The Art of Invisibility, mentioned such activity may be a dozen times in his career. Third-party apps are also commonly

VirtuallyUnboxed Lifting the lid on everything virtual

  • VMware SASE and Cloud Web Security
    by virtuallyunboxed on January 22, 2022 at 3:11 pm

    Let's start with the basics! SASE is a Gartner term and is an abreviation of Secure Access Service Edge. Still not much help right? Well lets start explaining this by looking at how people typically work, espeically remotely, and how their traffic is secured. Most of you that ever work remotely will most likely use a device level VPN. This uses software on your device to create a tunnel into your company data centre and allows you to remotely access internal resources. This is how most companies have done it for many years, and it really dates back to the days when all a companies resources were in their own data centre. Tunnelling all the traffic back into the data centre was the perfect way to reach everything a remote user would need.

  • Workspace ONE UEM and Workspace ONE Access Integration for Hub Services
    by virtuallyunboxed on March 2, 2021 at 4:06 pm

    I know there are a lot of SaaS customers out there who have only been using basic MDM functionality within Workspace ONE. The platform has moved on a lot in the last few years and if you haven't already seen it i strongly suggest you check out hub services. This takes the Workspace ONE agent that is used for device management and adds additional functionality to the application such as a unified app catalogue, people search and a notifications platform to name but a few!

  • Workspace ONE Access FIDO2 integration
    by virtuallyunboxed on February 19, 2021 at 2:33 pm

    As of this month (Feb 2021) All Workspace ONE Access SaaS tenants, now supports FIDO2 as an authentication method. So, I thought i'd put together a short video showing how easy it is to configure it and some different device types using the solution.

  • Workspace ONE UEM – Windows 10 enrolment
    by virtuallyunboxed on August 12, 2020 at 1:35 pm

    If you're an existing Workspace ONE UEM administrator, you'll know there are lots of ways to enrol a variety of devices. Whether you're a seasoned admin or a newbie though, you might not be aware of some of the Windows 10 enrolment methods.

  • Desktop Repurposing v2.0
    by virtuallyunboxed on May 26, 2020 at 1:18 pm

    A year ago myself and my colleague Matt Evans tested desktop re-purposing tools from 10 different vendors. One year on we run through the latest versions of the software and report our updated findings

  • Delivering Zero Trust to a Full Workspace ONE Cloud
    by mobilejon on January 24, 2022 at 5:00 am

    Awhile back, I wrote about Delivering a Full Cloud Workspace ONE environment. I would expand on that idea to add in Azure AD Join to account for the large shift … Delivering Zero Trust to a Full Workspace ONE Cloud Read More » The post Delivering Zero Trust to a Full Workspace ONE Cloud appeared first on Mobile Jon's Blog.

  • The Mobile Jon Blog: 2021 Review and Lessons Learned
    by mobilejon on January 16, 2022 at 3:24 am

    Well, I nearly did it! The Mobile Jon blog published an article a week EVERY week until the last week of December. Sadly, between COVID and everything else going on … The Mobile Jon Blog: 2021 Review and Lessons Learned Read More » The post The Mobile Jon Blog: 2021 Review and Lessons Learned appeared first on Mobile Jon's Blog.

  • No API to Block that Pesky MacOS Service? Workspace ONE to the Rescue!
    by mobilejon on December 20, 2021 at 5:00 am

    So, you are getting slammed by your nonsensical InfoSec department with their irrational fears? You spend some time doing some research and you’re just so screwed! MacOS won’t let you … No API to Block that Pesky MacOS Service? Workspace ONE to the Rescue! Read More » The post No API to Block that Pesky MacOS Service? Workspace ONE to the Rescue! appeared first on Mobile Jon's Blog.

  • What the vExpert Program Means to Mobile Jon
    by mobilejon on December 13, 2021 at 5:00 am

    This week, we open up the application process to the 2022 vExperts. With that in mind, it makes me think about what this program actually means to me. We’ll discuss … What the vExpert Program Means to Mobile Jon Read More » The post What the vExpert Program Means to Mobile Jon appeared first on Mobile Jon's Blog.

  • Taking a Look at Apple Business Essentials for Small and Medium Business
    by mobilejon on December 6, 2021 at 11:00 am

    Apple has finally done it. They finally released a MDM called Apple Business Essentials, which I had been waiting for a very long time to happen going back to my … Taking a Look at Apple Business Essentials for Small and Medium Business Read More » The post Taking a Look at Apple Business Essentials for Small and Medium Business appeared first on Mobile Jon's Blog.

  • App Volumes Architecture
    by Graeme Gordon on January 21, 2022 at 3:27 pm

    Learn how to architect your environments using App Volumes to deliver, update, assign, and manage the lifecycle of applications and users across virtual desktop (VDI) and published application environments. Use App Volumes to deliver software that is not in a golden image for VDI and RDSH, and to use user-writable volumes for specific use cases that cannot be delivered by packages.

  • Weekly Digest for End User Computing
    by Josue Fontanez on January 21, 2022 at 12:00 pm

    Do you ever get tired of searching for relevant content that is spread out all over the place? Have you ever thought, "Why isn't everything I need in one place somewhere?" Now it is. This weekly blog posts a curated list of technical articles from far and wide, including technical articles, knowledge base topics, virtual events, webinars, and more. Some are hard to find because they don’t have a good notification system. But Josue seeks them out and presents them here every week.

  • Cybersecurity Journey to Zero Trust - Episode 4
    by Andrew Osborn on January 21, 2022 at 9:29 am

    Zero Trust; yes, it's trendy and yes, it is achievable in your environment! Episode 4 helps to better define the term ‘zero-trust’, what it truly is and how best to comply, fund, and make the end user's lives better for it!

  • Cybersecurity Journey to Zero Trust: Episode 4
    by Andrew Osborn on January 20, 2022 at 10:57 am

    Episode 4 of 4 - In this final episode of the Cybersecurity Journey to Zero Trust, join Andrew Osborn and Dennis Moreau as they discuss Zero Trust Regulation & Framework, how to get funding or accommodate Zero Trust in the budget, and how to provide a great Zero Trust user experience.

  • Multi-Cloud Virtual Desktops and Applications with VMware Horizon
    by Graeme Gordon on January 14, 2022 at 3:47 pm

    VMware Horizon is a modern platform for secure delivery of virtual desktops and apps across the hybrid deployments and multiple clouds. Learn about deployment options, unified management from cloud services, and ease of user access.

  • What to Expect from the EUC Tech Marketing Team in 2022
    by Josue Negron on January 11, 2022 at 8:23 pm

    Episode #106 - In this episode, Josue Negron and Matt Langguth talk to Rob Engle, Senior Director of Technical Marketing at VMware, on what the community can expect from the EUC Tech Marketing team this year! Be sure to send us your feedback regarding this podcast to [email protected]!

  • Getting Started with Freestyle Orchestrator
    by Andreano Lanusse on January 11, 2022 at 6:52 pm

    This Getting Started guide provides an overview of Freestyle Orchestrator. Freestyle Orchestrator enables Workspace ONE UEM administrators to create complex workflows that fit specific requirements with flexibility and speed. Freestyle workflows can be used to set up resources such as applications, profiles, sensors, and scripts. The guide includes steps to create Freestyle workflows based on sequence and conditions across multiple resources on Windows 10 and macOS.

  • Cybersecurity Journey to Zero Trust: Episode 3
    by Andrew Osborn on January 11, 2022 at 12:04 pm

    Episode 3 of 4 - With Zero Trust things can get real, really fast. Learn how the Apache Log4j vulnerability just capped the year with another real-world example that drives home the importance of Zero Trust.

  • Integrating Workspace ONE Intelligence and VMware Carbon Black: Workspace ONE Operational Tutorial
    by Andreano Lanusse on January 5, 2022 at 3:41 pm

    In this tutorial, learn how to integrate Workspace ONE Intelligence and VMware Carbon Black to obtain threat insights and extend threat remediation with the Workspace ONE Intelligence Automation engine.

  • Evaluation Guide for VMware Horizon Cloud Service on Microsoft Azure
    by Caroline Arakelian on January 3, 2022 at 5:10 pm

    This guide helps you evaluate VMware Horizon Cloud Service on Microsoft Azure by stepping you through a series of practical exercises. You  deploy the Horizon Cloud manager–based pod into your Microsoft Azure capacity and then explore core capabilities and key features.

  • Introduction to VMware Horizon for Citrix Administrators
    by Gina Daly on January 3, 2022 at 10:33 am

    This guide provides a tour of VMware Horizon for administrators who have deployed Citrix XenApp and XenDesktop in the past. It discusses how the Citrix components map to a Horizon deployment, and the steps to get you started in evaluating VMware Horizon.

  • Cybersecurity Journey to Zero Trust - Episode 3
    by Andrew Osborn on December 20, 2021 at 7:19 pm

    With Zero Trust things can get real, really fast. Learn how the Apache Log4j vulnerability chain just capped the year with another real-world example that drives home the importance of Zero Trust Security Architecture!

  • Happy Holidays! Come join us at VMware!
    by Robert Terakedis on December 20, 2021 at 4:43 pm

    Episode #105 - In this episode, we take time to reflect on 2021 and look forward to 2022. We talk about living and creating the #AnywhereWorkspace, life at VMware, and why you (or someone you know) might want to join our team. https://via.vmw.com/whatiseuc and https://via.vmw.com/nhb You can send us your feedback regarding this podcast to [email protected]!

  • Horizon on Google Cloud VMware Engine Architecture
    by Chris Halstead on December 16, 2021 at 4:09 pm

    Learn how to architect and deploy Horizon on Google Cloud VMware Engine (GCVE) and deliver a seamless and integrated hybrid cloud for virtual desktops and applications.

  • Horizon on Google Cloud VMware Engine Configuration
    by Chris Halstead on December 16, 2021 at 4:08 pm

    Get an overview of the deployment and configuration tasks for Horizon on Google Cloud VMware Engine (GCVE)

  • Unify App Catalog with SSO
    by Christina Minihan on December 14, 2021 at 10:05 pm

    Elevate your employee experience by providing a single catalog of all the apps needed for work, with single sign-on for every app, regardless of device type or work location. 

  • Horizon Q4 Releases and interview with Jeff Ulatoski
    by Richard Terlep on December 14, 2021 at 6:44 pm

    Episode #104 - In this episode, we discuss what's new in Horizon for Q4 including the Horizon 8 2111 release and Horizon Cloud Service updates. Also an interview with Jeff Ulatoski from Product Management on App Volumes and ThinApp. You can send us your feedback regarding this podcast to [email protected]!

  • Horizon Architecture
    by Graeme Gordon on December 14, 2021 at 11:01 am

    This chapter of the reference architecture covers architecting and deploying Horizon on vSphere. learn about the concepts, components and get design guidance.

  • Horizon Configuration
    by Graeme Gordon on December 14, 2021 at 10:55 am

    Gain insights into Horizon installation and configuration, cloud pod architecture global entitlements, group policies, and True SSO including for Horizon Cloud Service on Microsoft Azure. This chapter is not intended to replace the product documentation, but to reference and supplement it with additional guidance.

  • VMware Blast Extreme Optimization Guide
    by Mark Ewert on December 13, 2021 at 8:00 am

    Learn how to optimize Blast Extreme to provide out-of-the-box configuration for most use cases, many network conditions, and even apps that require additional tuning. You can use the Blast Extreme display communication protocol to preserve color information instead of sacrificing to codec efficiency. You can enable High Color Accuracy to correct color reproduction problems, eliminate fuzziness or washout, and address issues with color combinations.

VMware Workspace ONE The un-official subreddit for VMware Workspace ONE. I recently started learning/managing Workspace One for the company I work for, I came to reddit to find others and saw that there wasn’t a community, so I started one. Our discord is here https://discord.gg/Zhr3TqMMf6

  • WsONE UEM - function to prevent Windows 11 update ?
    by /u/GeekgirlOtt on January 26, 2022 at 4:25 pm

    Is there anyway using the MDM to prevent Windows 11 upgrade itself or prevent showing the update as being available on the updates page of an enrolled PC ? submitted by /u/GeekgirlOtt [link] [comments]

  • WorkspaceOne wireles profile not accepting AES encryption
    by /u/Upbeat_Turn on January 25, 2022 at 11:46 pm

    We are rolling out Meraki wireless to all our offices and we are looking to integrate it with the Okta RADIUS agent. The Okta RADIUS agent works great on a domain when the wifi profile is deployed using group policy. However, when I try to create a WiFi profile in WorkspaceOne to push out to users it doesn't work at all. Users select the SSID and get this message "If you expect to find [SSID] in this location, go ahead and connect. Otherwise, it may be a different network with the same name." Clicking on Connect just results in the same message. Here are my wifi profile settings: Security Type: WPA2 Enterprise Encryption: AES Protocols: EAP-TTLS Authentication: Inner Identity Username/Password Trusted Certificates: Certificate #1 Trusted Server certificate: [thumbprint goes here] After saving and publishing the new profile the encryption setting is reset to TKIP. I tried changing various settings and I always get the same behavior; encryption gets reset to TKIP. Has anyone successfully deployed a WorkspaceOne wifi profile that works with AES? I'm configuring exactly as specified in the Okta RADIUS documentation and as I mentioned it works perfectly when pushed from a group policy. I'm not sure what I'm missing here. Any help is appreciated! submitted by /u/Upbeat_Turn [link] [comments]

  • How to configure start menu in WS1
    by /u/NathanTheGr8 on January 25, 2022 at 5:04 pm

    I am trying to configure the windows start menu using the native profile personalization settings. I tried following the doc but the profile fails to install. Is my XML malformed or am I doing it wrong? https://paste-bin.xyz/34504 Edit I figured out I forgot to include xmlns:taskbar="http://schemas.microsoft.com/Start/2014/TaskbarLayout" in the top of my file. submitted by /u/NathanTheGr8 [link] [comments]

  • Turn off Bitlocker for 1 Device
    by /u/dman4514 on January 24, 2022 at 10:54 pm

    In our profile for Windows laptops, we force Bitlocker encryption. I'm try to troubleshoot a Bitlocker issue on 1 device. When we try to turn off Bitlocker, it is automatically re-enabled almost instantly. Is there a way to turn off bitlocker for 1 device? I was thinking uninstall profile and reinstall when we are done troubleshooting, but I've seen this process fail. Since I'm working with a remote employee, I would rather avoid this method if I can. submitted by /u/dman4514 [link] [comments]

  • Delivering Zero Trust to a Full Workspace ONE Cloud
    by /u/Electronic-Bite-8884 on January 24, 2022 at 11:00 am

    submitted by /u/Electronic-Bite-8884 [link] [comments]

  • Blocked appstore
    by /u/Meet974 on January 21, 2022 at 4:46 pm

    We have blocked Google playstore in our environment but somehow a special kind of device(spectralink tc372) is trying to install an update of a public application which then redirects the user to playstore and they're able to install the newer version which I believe isn't compatible and is causing issues. Also after installation we see 2 different versions of the app, on is managed and another one is unmanaged(newer version) submitted by /u/Meet974 [link] [comments]

  • Smart Group based on App Installed
    by /u/syllang on January 20, 2022 at 6:31 pm

    I am new to Workspace One and I am looking for a way to create a smart group based on an app that is installed. The issue we are facing is that we have created a wrapper for our software packaging. Each software package needs that script and a runtime installed on our Windows clients to run. The plan would be to install those two apps and then the clients would go into a smart group based on those apps being installed. That group would then be the basis for every group we use to assign every apps. I know that I could simply create a dependency. I would like to avoid having to link a dependency on every software packages (+500) we have to import in Workspace One. Am I looking at this the wrong way? submitted by /u/syllang [link] [comments]

  • Workspace ONE UEM --- Android Location Notifications
    by /u/iliketacobell on January 19, 2022 at 8:05 pm

    We're new to the UEM world. We've been running Knox for about three years and we've made the jump. Everything is setup perfectly for our corporate-owned Android Samsung tablets --- except one thing. I added a Profile - Permissions and gave full GRANT on all permission on about 3 apps that require location tracking. The tablet will constantly alert that "Your IT admin is allowing X to access your location". If you clear the notifications, sooner or later it will all trigger again. We're using Launcher, if that makes a difference. submitted by /u/iliketacobell [link] [comments]

  • Cancel Workspace ONE Trial subscription early
    by /u/TrinacryTech on January 17, 2022 at 4:44 pm

    Hello everyone, Last week I have signed for the trial subscription for Workspace ONE because I was curious to know a bit how it works. I want now to cancel my trial subscription earlier, do I have to leave for the subscription to end to have my account cancelled for good? Thank you for helping. submitted by /u/TrinacryTech [link] [comments]

  • Problems installing apps - App Deployment installation failed
    by /u/BISOFH on January 17, 2022 at 5:30 am

    I'm currently road-testing Workspace One, and I'm running into an issue where the App Deployment Agent (and therefore basically anything I'm trying to do) keeps failing to install. I've checked the logs and found an error code, 2147023277, which keeps showing up. Its happening on may devices, straight from factory PC's, VMWare VM's, and completely provisioned PC's. I cant find any reference to the code online, there's nothing helpful in the event viewer, and the simple error of "installation failed" isn't helping. I've tried repairing the hub install, doesn't seem to help at all. Anyone seen this before, or have any ideas? submitted by /u/BISOFH [link] [comments]

  • WS1 user device enrollment asking for 2 verification steps while configured with saml.
    by /u/ek_1 on January 13, 2022 at 1:43 pm

    Hi! We are looking into deploying WS1 and as part of it people will be able to enroll their devices by signing in to the intelligent hub app. We are using Google as our IDP with saml integration to WS1 Access. But when a user sign in it goes through the whole sign in with google account and after that it asks for a workspace one account. How can I make this more seamless so they only require authentication with the google accont? submitted by /u/ek_1 [link] [comments]

  • Push files to Android using Workspace ONE UEM
    by /u/HelicopterOk2477 on January 12, 2022 at 7:27 pm

    I have fleet of android devices with an an app that can be configured with custom settings. During pilot, we’ve been having humans configure the app. We can configure the app using a config file, but need to find an automated way to deploy that config file to a specific folder on the android device. The app is unmanaged, and installed by default on this device. Can this be done using Workspace ONE UEM. TLDR: How to deploy a file to a specific folder on Android, using Workspace ONE UEM Is it possible? submitted by /u/HelicopterOk2477 [link] [comments]

  • Set default windows apps WS1
    by /u/NathanTheGr8 on January 12, 2022 at 4:40 pm

    How do other admins set the default app associations with WS1? In the past, I have run the DISM commands during OSD before a user logs in. However, with WS1 all the apps install after a user logs in. Is there a way to run an app or script before the user logs in? The goal is to set outlook and adobe reader as the default for mail and pdf. However, I would still like to let the user change their apps later on so I don't think I want to manage the apps as a profile or GPO-like setting. submitted by /u/NathanTheGr8 [link] [comments]

  • Password rotation issue on MacOS
    by /u/aviendharwen on January 12, 2022 at 3:29 pm

    Hi all, When we enroll a Mac, there's a hidden local admin account that is created with a randomly generated password, which is a WSOne feature. The first password works fine. Once it's used, it is reset 8 hours later. In the console, both the old and new password are displayed. The Mac communicates correctly with WSOne: the AWCM status is connected. The issue is, when the password is rotated, it doesn't always work. The old one doesn't work either. This problem is completely random as the next password may very well work, there's no way to tell. Rebooting the Mac, doing queries and syncs with WSOne, nothing helps. If any of you has experienced this issue and found a fix, I will be eternally grateful. 🙂 Edit: Tested with Big Sur & Monterey, Intel & Silicon. WSOne version: 2105 submitted by /u/aviendharwen [link] [comments]

  • WS1 Computer group based on AD OU
    by /u/barchetta8 on January 11, 2022 at 7:51 pm

    We have devices in stock which we do not want to be subject to compliance policies. They are parked in an AD OU. Im not seeing a method to somehow exclude devices based on AD ou. We do this with users (ldap), but Im not seeing an option for connecting a smart label or OG to an AD OU.. is this the way it is? Essentially it means we have to maintain a group within WS1 on top of AD if this is the case, so thought Id ask. submitted by /u/barchetta8 [link] [comments]

  • WS1 Migration
    by /u/Improvement_Great on January 9, 2022 at 9:10 pm

    Hello, I’m looking at migrating WS1 to intune and jamf. My current WS1 profiles enable encryption (bitlocker and FileVault) is there a way to migrate encryption keys or to turn off encryption on all my mdm managed devices so then I can re-encrypt on the new MDM? I know I can manually do this but if it’s possible though WS1 before enrolling with jamf/intune that’d be ideal. submitted by /u/Improvement_Great [link] [comments]

  • Samsung Camera Default Viewer
    by /u/snewton_8 on January 4, 2022 at 7:49 pm

    We are a fully work managed (no COPE) Samsung shop with S10, S21s. There have been a few rare cases where the system apps won't install on a device. In some cases having the user perform a factory reset and re-enroll fixes the issue. Yes, we have the Application Control Profile pushed and verified it installed. For those that don't have time to do that immediately or if they did that and still don't see Gallery, we made Gallery Go available for download. This works with viewing pictures on the device perfectly. The problem comes in when they take a picture and they are unable to view the shot they just took because Gallery Go isn't set as a default viewer for the camera but it is for all other pictures on the device. I've exhausted my google-fu trying to figure out how to make Gallery Go the default viewer for the camera app but I'm coming up with nothing. The closest I have found is to have the user go into the Gallery app and clear defaults and the next picture will prompt for the app to use. The problem here is that we don't have the Gallery installed to do that. Ideas? submitted by /u/snewton_8 [link] [comments]

  • Happy New Year!
    by /u/ZakeriaCollins on January 1, 2022 at 6:23 am

    submitted by /u/ZakeriaCollins [link] [comments]

  • Updating Office 365 / M365 Apps for Enterprise
    by /u/oldmilwaukie on December 30, 2021 at 4:59 pm

    For those of you managing Windows 10/11 devices, how are you applying updates to Microsoft 365 apps? I was hoping to manage these updates in a similar manner as Quality Updates using the update CSP for WUfB but it doesn’t seem that this is supported for newer click-to-run deployments. submitted by /u/oldmilwaukie [link] [comments]

  • reporting time is off in 19.03.0.0 vmware identity manager
    by /u/lark2056 on December 29, 2021 at 8:39 pm

    running version 19.0.3 access in our environment. Then Log 4 J hit and had to apply all the fixes. Now the time is off on the reporting on the landing page. used to show people logging in up to the minute. It bounces around all the time. I have rebooted the appliances, the connectors, the UAG's. the only thing I did not do yet is reboot SQL. the time shows perfectly in the systems diagnostics page. We are trying to get to the next version as well. just curious if anyone has ever come across this and knows how to fix it. I have a case open, but its taking forever to get addressed. Thank you! ​ https://preview.redd.it/wuzmfajvlj881.png?width=357&format=png&auto=webp&s=2bd66a7f69fd8bf8b2c3b9bf8606043842f52b39 submitted by /u/lark2056 [link] [comments]

The Support Insider VMware Support News, Alerts, and Announcements

  • Leveraging Automation in VMware Skyline Advisor Pro
    by Kelcey Lemon on January 16, 2022 at 4:58 am

    Tweet Skyline Advisor Pro: Insights API Skyline Advisor Pro introduced the Insights API that you can leverage to automate some common workflows. And if you don’t know exactly what an API is, that’s Ok. We’re going to define what an API is, outline its advantages, show how to access the Insights API in Skyline Advisor … Continued The post Leveraging Automation in VMware Skyline Advisor Pro appeared first on VMware Support Insider.

  • Skyline Insights API – Sending Findings to PagerDuty
    by [email protected] on January 12, 2022 at 2:55 pm

    Tweet Earlier blog entry shows you how to send Skyline Findings to Jira.  Here is an example to send to PagerDuty. First, you need to generate a token from PagerDuty for the script to use. Now you need to format the Skyline Findings data.  This was also done in previous JIRA and Slack examples. NOTE: $1 is … Continued The post Skyline Insights API – Sending Findings to PagerDuty appeared first on VMware Support Insider.

  • Skyline Insights API – Creating a Ticket in JIRA
    by [email protected] on January 12, 2022 at 2:53 pm

    Tweet Earlier,  we have shown you how to send the Findings data to Slack.  Here is an example of how to send data over to JIRA. Similar to previous examples,  here is how we can convert the Findings data With the variables, we can now post it on JIRA.  In order to do that, we will need the desired … Continued The post Skyline Insights API – Creating a Ticket in JIRA appeared first on VMware Support Insider.

  • Skyline Insights API – Collaborate on Skyline Findings in Slack
    by [email protected] on December 9, 2021 at 2:17 pm

    Tweet With the release of “VMware Skyline Advisor Pro”, the Skyline Insights API is made available. With the new API, you can query and script to receive Skyline’s Proactive Findings data. Even without Skyline Insights API, you were able to export Findings to CSV. Do you want to send the Findings data to slack so you and your team can take action? In some organizations, VMware admins might not go into Skyline Advisor to … Continued The post Skyline Insights API – Collaborate on Skyline Findings in Slack appeared first on VMware Support Insider.

  • Skyline Insights API – Using Powercli
    by [email protected] on December 9, 2021 at 2:12 pm

    Tweet We understand that not all administrators are using Linux or Mac OSX. Here are the steps to use the Skyline Insight API when in Windows. NOTE: Please review this blog entry before proceeding. You need to do the prerequisites prior to using Powercli. Add “API User role” Create API Token In order to create … Continued The post Skyline Insights API – Using Powercli appeared first on VMware Support Insider.

  • Skyline Insights API – Using GraphiQL
    by [email protected] on December 9, 2021 at 2:10 pm

    Tweet With VMware Skyline Advisor Pro, GraphiQL has been made available to view the Skyline Insights API structure. While you cannot leverage GraphiQL into any of your automation platforms, you can use it to view the data structure and output. Here are the steps to use GraphiQL.  1 – Create “Access Token” from “API Token”. Please check for more comprehensive writeup (here) 2 – Log into Advisor and select “View API Explorer” 3 – select … Continued The post Skyline Insights API – Using GraphiQL appeared first on VMware Support Insider.

  • Skyline Insights API – Getting Started
    by [email protected] on December 9, 2021 at 2:10 pm

    Tweet With the release of “VMware Skyline Advisor Pro”, the Skyline Insights API is made available. Here are the steps you need to perform to have a working environment. Please read the “API Documentation” thoroughly to ensure you know all the steps and options.  NOTE: Please make sure you have also installed “jq” (if you are on a Mac). Else, remove “jq” from commands … Continued The post Skyline Insights API – Getting Started appeared first on VMware Support Insider.

  • Skyline Proactive Findings – November Edition
    by James Walker on November 30, 2021 at 7:50 pm

    Tweet VMware Skyline releases new Proactive Findings every month. Findings are prioritized by trending issues in VMware Support, issues raised through Post Escalation review, Security vulnerabilities, and issues raised from VMware engineering, and customers. For the month of November, we released 12 new Findings. Of these, there are 7 Findings based on trending issues and … Continued The post Skyline Proactive Findings – November Edition appeared first on VMware Support Insider.

  • VMware Skyline Advisor Pro is here!
    by Kelcey Lemon on November 16, 2021 at 7:40 pm

    Tweet Skyline Advisor Pro builds on the familiarity of its predecessor, Skyline Advisor, and extends it with deeper insights and accelerated data analysis. And like it’s predecessor, Skyline Advisor Pro will be available to Production, Premier, vRealize Cloud Universal, and Success 360 Customers. But that is where the similarities with its predecessor end. Skyline Advisor … Continued The post VMware Skyline Advisor Pro is here! appeared first on VMware Support Insider.

  • Skyline Advisor Proactive Findings – October Edition
    by James Walker on October 30, 2021 at 1:09 pm

    Tweet VMware Skyline Advisor releases new Proactive Findings every month. Findings are prioritized by trending issues in VMware Support, issues raised through Post Escalation review, Security vulnerabilities, and issues raised from VMware engineering, and customers. For the month of October, we released 14 new findings. Of these, there are 7 findings based on trending issues, … Continued The post Skyline Advisor Proactive Findings – October Edition appeared first on VMware Support Insider.