Week 3 - VMware Digital Workspace Newsletter

Image
   Weekly highlight:    VMware Workspace ONE ITSM Connector  is now a ServiceNow certified app:   The Workspace ONE ITSM Connector supports common Workspace ONE UEM commands, such as change passcode, device lock, device and enterprise wipe, log requests, messages, soft reset, device sync, and more. Integration with Workspace ONE Assist enables help desks to quickly launch remote support sessions and view or control employee devices, directly from ServiceNow.   https://store.servicenow.com/sn_appstore_store.do#!/store/application/b110a7a11b12b41092ce8514604bcb28/1.0.2?referer=%2Fstore%2Fsearch%3Flistingtype%3Dallintegrations%25253Bancillary_app%25253Bcertified_apps%25253Bcontent%25253Bindustry_solution%25253Boem%25253Butility%25253Btemplate%26q%3DVMware&sl=sh   Release Notes Initial release  Integration with Workspace ONE UEM via REST api Guided setup for HTTP connection Configurable device managment actions  Role based access for actions Seamless integration with standard Incident

Week 1 - VMware Digital Workspace Newsletter

 


Weekly highlight: 

 

VM News Collector iOS and Android app

  • VM News Collector is a real-time news aggregator dedicated to the collection of all kinds of real-time news updates and applicable information & resolutions on all technology products belonging to the VMWARE Group, a technology giant, leading the technology revolution in cloud computing & virtualization fields.
    VM News Collector App is a VMWARE knowledge base that provides details of updates on VMWARE's products and enables you to easily monitor & search for all product news from the VMWARE ecosystem.

  • Link: https://flings.vmware.com/vm-news-collector

 



Software Releases Week01-2022

System

Component

Release

Announcement

Release Date

Android

Hub

21.11

  • AAGNT-191410: Direct Boot support for Work Profile Passcode Reset

    • Requirements

      • Workspace ONE UEM Console 21.11

      • Device must be running Android 11 or higher

    • When assisting a user with clearing their Work Profile Passcode when the Work Profile is locked in Direct Boot, first the user must click the Forgot Password button on the lock screen, at which point the IT admin can send the Clear Work Profile Passcode command.

  • Bug Fixes

https://docs.vmware.com/en/VMware-Workspace-ONE-UEM/services/rn/Introducing-VMware-Workspace-ONE-Intelligent-Hub-for-Android.html

07.01.22

Android

Relay

5.13

  • Updated app version to support Workspace ONE Intelligent Hub 21.11.0.17

https://kb.vmware.com/s/article/81990?lang=en_US

07.01.22


Workspace ONE UEM Software Distribution Agent fails to install on re-enrolled systems (84243)

  • The Windows Software Distribution Agent (SFD Agent) might fail to install on some systems which are re-enrolled into Workspace ONE UEM. In cases where this occurs, applications distributed from the console will show as queued for devices on the Troubleshooting tab of device details but never be deployed to the systems.

  • KB: https://kb.vmware.com/s/article/84243?lang=en_US

VM News Collector iOS and Android app

  • VM News Collector is a real-time news aggregator dedicated to the collection of all kinds of real-time news updates and applicable information & resolutions on all technology products belonging to the VMWARE Group, a technology giant, leading the technology revolution in cloud computing & virtualization fields.
    VM News Collector App is a VMWARE knowledge base that provides details of updates on VMWARE's products and enables you to easily monitor & search for all product news from the VMWARE ecosystem.

  • Link: https://flings.vmware.com/vm-news-collector


[Resolved] CRSVC-25521 - Workspace ONE UEM - Guidance for addressing CVE-2021-22054 (87167)

  • The Workspace ONE team has investigated CVE-2021-22054 and has determined that the possibility of exploitation can be removed by performing the steps detailed in the Workaround section of this article. This workaround is meant to be a temporary solution until updates documented in VMSA-2021-0029 can be deployed.

  • Resolution for CVE-2021-22054 is documented in VMSA-2021-0029

  • KB-Reference: https://kb.vmware.com/s/article/87167?lang=en_US


CDN to be Default for Product Provisioning in SaaS Workspace ONE UEM (86142)

  • Enrolled devices, Pull Relay Servers, and Relay Server Cloud Connectors (RSCC's) have historically downloaded Product Provisioning apps and files directly from Workspace ONE UEM application servers. In particular, devices download these apps and files from UEM servers if:

    1. There are no Relay Servers configured in the UEM environment

    2. There are Relay Servers configured in the environment, but the device cannot communicate with them. Here, the UEM application server acts as a fallback source of files.

  • For SaaS Workspace ONE UEM environments on version 22.01 and higher, delivery of Product Provisioning apps and files to devices (in the scenarios above), Pull Relay Servers, and RSCC's will be shifted from UEM servers to the Akamai CDN.
    Delivering apps and files directly to devices from Workspace ONE UEM places a significant load on the environment. In the past, Internal Applications also followed the same pattern and impacted environment performance. To resolve this, delivery of Internal Applications was moved to the Akamai CDN. Product Provisioning apps and files will now follow suit to ensure optimal environment performance.

  • This change will be implemented starting with Workspace ONE UEM 22.01.

  • Please review: https://kb.vmware.com/s/article/86142?lang=en_US


Workaround Instructions for Horizon RADIUS and RSA SecurID Authentication Failure with Unified Access Gateway (UAG) Version 2111(.x) (87253)

  • Horizon RADIUS or RSA SecurID authentication fails when using Horizon Client versions 2111 (or newer) with UAG 2111(.x) when UAG Horizon Edge Service is configured with the default passthrough authentication and the Horizon broker (Connection Server) is configured to perform RADIUS or RSA SecurID authentication. The user is denied access even when correct credentials (username, passcode and PIN) have been entered. A user connecting directly to Connection Server and not via UAG can successfully logon using RADIUS or RSA SecurID.

  • This issue does not occur when RADIUS or RSA SecurID authentication is configured on UAG and not on Connection Server. It also doesn't occur with versions of Horizon client older than 2111 or versions of UAG older than 2111.

  • This issue is caused by a defect in UAG versions 2111(.x) relating to new functionality introduced to support additional encryption of particular credential values from Horizon client versions 2111 and newer. It only occurs with this combination of UAG and Horizon Client versions and only occurs when using UAG in passthrough authentication mode and when Connection Server is configured for RADIUS or RSA SecurID.

  • This is a known issue and will be resolved in the next scheduled release of Unified Access Gateway.

  • Workaround outlined in KB https://kb.vmware.com/s/article/87253?lang=en_US


Loading 3rd Party Mac plugins with Session Enhancement SDK (vdpService) (85186)

  • vdpService does not load a 3rd Party Mac OS plugin

  • The VMware View Session Enhancement Software Development Kit (SDK) allows software engineers to write host-side and client-side applications and allows communication between a client and remote desktop. This article provides detailed instructions on where to install client side vdpService plugins on the Mac Operating System.

  • Changes to the Mac application installation integrity check do not allow for 3rd party plugins to be added to Horizon install folder before first launch. The integrity check was always an option, however, Apple changed to the default to be enabled 3 or 4 years ago.

  • The KB contains the instructions for installing 3rd party plugins for Session Enhancement SDK (vdpService).

  • Please review: https://kb.vmware.com/s/article/85186?lang=en_US


Important KBs recently updated:


Digital Workspace Techzone, Blog and YouTube Updates


Third Party Blog and Technology Updates




Software Releases January 2022


Patch & Seed Script Updates Week01-2022






Comments

Popular posts from this blog

Workspace ONE | Use ADFS as an Identity Provider in Workspace ONE Access with JIT

Configure Shared iPad for Apple Business Manager in Workspace ONE

VMworld Security Recap 2020