Weekly highlight: Horizon Cloud Service next-gen 2311 (Nov 2023) release - Horizon Edge
- Edge Gateway appliances, now available in supported cloud-native formats, can connect Horizon 8 pods deployed in public cloud providers using the federated architecture to the Horizon Control Plane.
- Desktops and Applications
- Pools
- Dual-stack (IPv4/IPv6) subnets are now supported when deploying Pools. Activating this option causes VMs to deploy with both an IPv4 and IPv6 address on the NIC.
- Image Management
- The Trusted Launch security type is now available as an option when creating an image. When creating Pools from images with Trusted Launch selected, VMs use the Trusted Launch security type.
- Monitoring
- Administrators can now add Unified Access Gateways with self-signed certificates for Horizon 8 Edge monitoring.
End of Life Announcement for the Legacy App Catalog in Workspace ONE UEM (95774) - We are announcing the End of Life (EOL) for the UEM Legacy Catalog. This change paves the way for the more advanced Intelligent Hub App Catalog, powered by Workspace ONE Hub Services. This transition is a strategic step towards providing a more integrated, user-friendly, and feature-rich application catalog experience.
- NOTE: If you are already using the App Catalog in the WS1 Intelligent Hub Application, this transition does not affect you, and you're already utilizing our most advanced features.
- The UEM Legacy Catalog (known as the AirWatch Catalog) will be officially discontinued as of May 1st, 2024. After this date, the catalog will no longer be available or supported. The Workspace ONE Intelligent Hub App Catalog will be the replacement going forward. For end users, this means that they will no longer access the App Catalog from the Web Clip on their home screen, but will find their Apps and Entitlements in the Intelligent Hub App.
Release Updates Week 48: New Apple Builds Are Now Available New builds of the following software are now available: - iOS 17.2 Beta 4 (21C5054b)
- iPadOS 17.2 Beta 4 (21C5054b)
- macOS 14.2 Sonoma Beta 4 (23C5055b)
- tvOS 17.2 Beta 4 (21K5356c)
- watchOS 10.2 Beta 4 (21S5358a)
Workspace ONE Boxer for Android 23.11 (staged) - Improvements in email subject line prefixes
- Clear subject line indications of “Re:” for replies and “Fwd:” for forwards.
- No repetition in “Re:” or “Fwd:” prefixes for cleaner subject lines.
- Consistent subject line formatting with Boxer’s style, avoiding confusion with desktop app prefixes (“RE:” and “FW:“).”
- Drop of Support for Android 11
- Users on Android 11 and older will no longer be eligible for support in the event of any issues.
- New features and optimizations may not work as intended on Android 11.
- Quality improvements and crash fixes
Workspace ONE Boxer for iOS 23.11 - Email Search Modes
- The pre-requisite for this feature is EAS 16.1+ (For older EAS versions the default search mode is applied).
- Users can now choose between two different search modes - Extensive Search and Quick Search.
- The Quick search mode is faster and returns a list of results in just a few seconds.
- The Extensive search shows details about the found emails such as attachments and events right on the search results page. The emails are shown in threads.
- The default search mode is Extensive Search.
- The admins can control this configuration through an account-based KVP AccountEmailSearchMode (type integer) with values 0 - Extensive Search (default) and 1 - Quick Search.
- Users can also choose which search mode to use from the User settings in the application for each account.
· Drop of Support for iOS 14- Users on iOS 14 will not receive further updates.
- New features and optimizations may not work as intended on iOS 14.
· Quality improvements and crash fixes Workspace ONE Tunnel for Android 23.09 - In this release, we have made a few updates containing general quality and performance improvements with the following new features:
- Phishing and Content Protection is enforced for all applications on the device (or container) independent of the Full-Device or Per-App Tunnel-VPN mode.
- Technical Preview: Block Private DNS
- We have noticed that with recent Android OS updates, the Private DNS setting on the device is set to 'Automatic' by default. This setting encrypts all DNS requests from the device.
- This includes DNS requests from applications and to destinations that are configured for Tunnel.
- As a result, the Tunnel client is unable to process these DNS requests and the user is unable to access internal resources.
- To ensure users can access internal resources and private DNS continues to function for non-Tunnel workflows, we are introducing the ability to block Private DNS requests for requests that are managed by Tunnel.
- This is implemented via the following KVP:
- KVP: BlockPrivateDNS | Type: Boolean | Default Value: False
Set this value to True to block all Private DNS requests. This is implemented by blocking all TLS DNS requests over port 853. - It is expected that the OS will default back to DNS over UDP over port 53
KB Highlights & Announcements Week 48: [Android 14] Certain Android Profile settings cannot be changed once set (95776) - Google has identified a known issue in Android 14 where certain policy settings - mostly in the Android Restrictions Profile - can no longer be changed from the value that was set for the device. These policy settings can no longer be changed if:
- A device is upgraded from Android 13 to Android 14 after the Profile was installed
- A device on Android 14 is rebooted after the Profile was installed
- If either of the above occur, these settings become permanent.
Workspace ONE UEM Critical Insights: Understanding Attribute Lists in LDAP Environments - Navigating Variances Across Directory Services Imple - Inherent variations are possible among LDAP environments, showcasing nuanced differences across various available solutions. This knowledge base article will center on a specific distinction— the attribute list. In the context of Workspace ONE UEM, the attribute list serves as the definitive reference for actions such as syncing, updating, adding, modifying, and other operations related to user attributes within directory services.
High Priority KBs - Workspace ONE UEM - Updated requirements for on-premise cumulative patches (94706)
The base GA version for current Workspace ONE UEM releases is being revised through updated installers. On-premise customers will need to consume a revised installer for a given major version before any future cumulative patches can be deployed for that major version. These revised installers are required to address compatibility issues with regular cumulative patches. - Introducing Workspace ONE (WS1) UEM Next-Gen SaaS
VMware is excited to announce that the resource management & tracking improvements, the first major feature-based milestone in the Workspace ONE UEM Modernization Journey, is now available for customer testing. These improvements will be enabled in limited testing environments (CN135) starting on Thursday August 24, 2023. - [Resolved] SINST-176145 - Multiple Workspace ONE UEM application pools and services may not start once stopped (93877)
Workspace ONE UEM services and application pools may fail to start once stopped. This issue is typically observed alongside the following error message in the service's log - [RESOLVED] SINST-176160 - Workspace One UEM - Unable to edit existing or create new DDUI profiles. (93911)
Upon deploying the patches noted in KB 93877, you may experience an error when creating or editing DDUI device profiles (iOS, macOS, Android Enterprise) in the Workspace ONE UEM Console. - VMware Workspace ONE UEM New Control Plane SaaS Deployment Schedule (86243)
Workspace ONE UEM has undergone a complete re-architecture to modernize the platform using microservices and containers to enable increased scalability and performance and increase the rate of innovation. Now after having conducted significant and careful testing, these architecture updates, including a new control plane, will be deployed to UEM SaaS environments over the next several weeks, with options available to on-premise customers after this roll-out (Later in 2022).
Recently updated or added KBs (Links) Digital Workspace Techzone, Blog and YouTube Updates 3rd Party Blog Updates & Industry News
November Software Releases
Patch & Seed Script Updates Week 48-2023 - OS Updates Seed Script
- Seed Script for latest Device Model Information
- Workspace ONE UEM 23.02
- Patch Level 23.02.0.30
- CRSVC-42824: Secure Channel - Cannot find the original signer issue.
- SINST-176239: Workspace ONE UEM Patch installer 22.12.0.31 fails at Cert Installer execution.
- AAPP-16647: Unable to install VPN profile on iOS devices.
- AAPP-16653: Show or hide a field which is dependent on different fields out of which one is set.
- AAPP-16650: Action parameter section sequencing is not correct.
- FS-4566: macOS workflow stuck waiting on profiles.
- CRSVC-43330: Increased CPU usage by CiscoISE app pool.
- RUGG-12628: Add support for pull relay server discovery with IP as discovery text.
- AAPP-16684: Workspace ONE UEM unable to edit approved SIM for some devices.
- CRSVC-41111: Cisco ISE API account password expiration.
- AAPP-16639: VPN IKEv2 payload dropdown values were changing to default value after adding a version.
- AMST-39887: Removing Windows update profile does not remove configured policies.
- CRSVC-39018: Convert StartRowCount datatype to bigint from int for Purge Statistics table.
- FS-4602: macOS workflow status does not update without a manual query.
- FS-4727: Seed Mac workflow host in canonical release 23.02.
- AMST-40140: If the "Managed Applications" payload is configured in Windows profile, checkbox size in other payloads will become huge
- https://docs.vmware.com/en/VMware-Workspace-ONE-UEM/2302/rn/vmware-workspace-one-uem-2302-release-notes/index.html#Resolved%20Issues
- Last Update: CW47
- Workspace ONE UEM 23.06
- Patch Level 23.06.0.11
- AAPP-16712: Correcting the existing profile context data.
- CRSVC-43754: Android shared device mode app configuration was not completing.
- RUGG-12629: Add support for pull relay server discovery with IP as discovery text.
- CMCM-190730: Status of document in content detail report was not corrected.
- CRSVC-43331: Increased CPU usage by CiscoISE app pool.
- AMST-40139: If the "Managed Applications" payload is configured in Windows profile, checkbox size in other payloads will become huge.
- ARES-26622: Device logs not uploaded to console.
- CRSVC-42825: Secure Channel - Cannot find the original signer issue.
- CRSVC-42774: Navigating to app events gives spaceman error.
- ARES-26909: Sync should queue install commands when there are already pending commands for other devices and previous status is pending release.
- FS-4728: Seed Mac workflow host in canonical release 23.06.
- AAPP-16685: Workspace ONE UEM unable to edit approved SIM for some devices.
- https://docs.vmware.com/en/VMware-Workspace-ONE-UEM/2306/rn/vmware-workspace-one-uem-2306-release-notes/index.html#Patch%20Resolved%20Issues
- Last Update: CW47
|
Comments
Post a Comment