Apple has an option to encrypt the MDM profile payloads (both iOS and macOS). But then when you try to view the profile XML in the console (ex. migrating payloads between UAT and Production environments, working with custom profiles) - they are encrypted! Turns out, there is a way to view the XML w/o having... Continue Reading →
iOS 14.2 Xamarin bug – using Workspace ONE Intelligence Automations to improve user experience
There is currently an issue (confirmed by Microsoft) with Xamarin-based apps built for iOS 14.2 - they crash when deployed via MDM (but do not crash if installed manually from store) and only on the newer devices (iPhone XR etc). In this post I will show a solution that we came up with together with... Continue Reading →
Use compliance data in Azure AD Conditional Access policies by integrating Workspace ONE UEM with Microsoft
The title says it all! The feature has been available for a while in a closed preview status, but with 2008 it has moved to Public Preview! Similarly, Microsoft moved the APIs on their side to Public Preview as well, listing VMware Workspace ONE as the ONLY (currently) supported EMM. Needless to say, we are... Continue Reading →
Android management in China – what are your options?
After I published the article regarding the enrollment of Android devices in closed networks, the hottest question was how to apply it for China. The answer is as usual “it depends”. If you want to know more – read on! What’s the problem?What options are available?What is the optimal approach? What’s the problem? Problem is... Continue Reading →
Enroll Android Enterprise devices in closed networks with Workspace ONE
As more customers migrate from the legacy Device Admin to Android Enterprise, I get more often questions about networks that have no Internet access (mostly rugged devices in retail, logistics, manufacturing, or high security cases such as police or healthcare IoT). So I think I’ll leave a quick guide/FAQ here. How does closed network enrollment... Continue Reading →
How to publish an app to customer’s Managed Play Store with Android Enterprise
As more organizations migrate to Android Enterprise (in light of Device Admin deprecation), I get this question more and more often from customers, partners, colleagues and developers alike. The model of application publishing with Managed Play Store is different than it previously was with Internal Apps. While Google has official documentation, many people still stumble... Continue Reading →
VMware Launcher on Android Enterprise – nuances
I regularly get questions from customers and partners who used kiosk mode on older Device Admin devices with VMware (then AirWatch) Launcher, and have issues since they had migrated to Android Enterprise and Launcher 4.0+. In this post you will learn how to: Solve the most frequent (and annoying) issue when migrating Launcher setups to... Continue Reading →
Remediate the Pixel4 and Galaxy S10 biometric security flaws with Workspace ONE
I am pretty sure you've heard already about the issues with Samsung Galaxy S10 fingerprint sensor and Google Pixel 4 Face Unlock. Both companies have acknowledged the issues and committed to releasing the patches "soon" (Samsung is said to be testing fixes in certain countries already). What can you in the meantime? With Workspace ONE... Continue Reading →
Oracle Java licensing in Workspace ONE
Multiple components of Workspace ONE are build using the Java platform. I've received several questions from customers this week regarding the nearing EOL of Oracle Java and the related licensing changes. I hope this post will be useful to others having this issue. First of all, VMware had already posted a blog on this matter... Continue Reading →
On Apple, Security by Obscurity and WS1 Trust Network.
In the last several weeks a number of bugs were found in Apple's iOS, MacOS and protocols. This had coincided with a partner workshop last Friday, where the decisive argument was "Have you ever heard of an Antivirus for an iPhone". Here's what came out.