Service – Week 35-2022 VMware Enduser Computing Updates

Important KB Articles and Release Updates

Please note: KBs may get updated after being referenced here. Please always follow the link to the original post in kb.vmware.com

  • VMware Explore – Enduser Computing Announcments Overview
  • VMware Explore 2022 Anywhere Workspace, Workspace ONE, and Horizon announcement overview
  • What’s new in Workspace ONE UEM
    • Autonomous workspaces
      “proactive, data-driven automations that are self-driven by the digital workspace platform, better ensuring your organization’s desired state across management, security, and end-user experiences. Requiring limited to no manual interaction, autonomous workspaces will deliver self-configuring, self-healing, and self-securing outcomes for your workspace.”
    • Freestyle Orchestrator will be expanding to include support for mobile devices.
    • Windows multi-user support is currently in Tech Preview of Azure AD-based deployments, and will be extended to Active Directory-based deployments.
    • Updates for Workspace ONE XR Hub
    • Updates for thr integration between Intel vPro and Workspace ONE
    • Updates for desired state management for mobile
    • Updates for data-driven user interfaces in the UEM console
    • Updates for ChromeOS.
    • Announcing the Workspace ONE Cloud Marketplace, which will feature dashboards, widgets, reports, Freestyle Orchestrator workflows, and other resources that can be imported to help customers adopt additional solutions.
  • What’s new with digital employee experience at VMware Explore 2022
    • now include VMware Horizon, third-party managed and unmanaged devices
    • employee experience scores for Horizon, available soon
    • delivering, measuring, analyzing, and remediating employee experiences
    • announced employee experience scoring capabilities for Horizon
    • frontline solution packs for Workspace ONE Intelligence
    • Intelligence Guided Root Cause Analysis is now available.
  • The next generation of VMware Horizon Cloud is here!
    • VMware Next-Gen Horizon Cloud was announced at VMworld 2021, went into Limited Availability in spring of 2022, and is now Generally Available for Horizon Cloud environments on Microsoft Azure.
    • unique “thin-edge” architecture that drastically reduces the amount of infrastructure deployed in your environment
    • advanced automation via published APIs
  • Simplify and speed virtual desktop delivery with Horizon Managed Desktop
    • will provide a managed service offering that takes care of lifecycle services, support, and more, on top of customer-provided infrastructure.
    • help customers that don’t have in-house experts get to value with VDI faster.
    • Ongoing lifecycle & cost management 
  • Revolutionize virtual apps by publishing apps on demand on generic RDSH servers
    • combine App Volumes Apps On Demand with Horizon app publishing capabilities to simplify app publishing and save on resources.
  • Google ChromeOS devices are now a validated solution with VMware Horizon for healthcare
    • VMware and Google worked together to validate ChromeOS devices and specialized peripherals for key healthcare use cases.
  • Intel vPro and VMware Workspace ONE: An unparalleled integration for chip-to-cloud management
    • became available earlier this summer
    • enables several unique management capabilities, including out-of-band management for devices that are powered off or have operating systems that are not functioning
    • announcing a partner program to help customers take advantage of this integration.
  • MACOS-3266 – Workspace One UEM – WIFI profile with multiple credential payloads fails to install on macOS devices ( Error: 107 Invalid profile) (89423)
    • WIFI profiles for IOS MAC devices that are configured with more than one credential payload may fail to install on devices.
    • From the troubleshooting tab (device view -> more -> troubleshooting) for an affected device in the UEM Console the ‘install failed’ notification should show an error similar to:
    • Additionally in the device hub logs for the profile install event you may see the same error:
    • 2022-30-08 16:47:05+0530 Error 20991 mdmclient: [com.apple.ManagedClient:MDMDaemon] [ERROR] [ErrorChain.0] (InstallProfile) [ConfigProfilePluginDomain:-107] Invalid profile: the PayloadUUID “86d0e0e6-ee0a-4881-b728-c6b08800a5a2” is used more than once in the profile.>
    • Version Identified: Workspace ONE UEM 22.06
    • This issue is resolved in version 22.06.02 (Existing profiles will need to be manually addressed – see workaround section below).
      On-Premise customers can download the latest patch in the resources portal here .
      SaaS customers can request for their environment to be patched.
    • Workaround in KB https://kb.vmware.com/s/article/89423?lang=en_US&source=email
  • CMEM-186691: PowerShell email management integration may not work with Workspace ONE UEM 2206 (89373)
    • With Workspace ONE UEM console 2206, PowerShell email Integration (MEM) may not function as intended. PowerShell Test Connection may not work. The following error can be observed in the UEM console log:EXCEPTION *** AirWatch.AirWatchException: User credential of the remote PowerShell server contains the special characters. At AirWatch
    • Workspace ONE UEM 2206 
    • Newly enrolled devices may not be allowed to access email automatically through MEM PowerShell commands
    • The email configuration will be removed for any unenrolled device, but a block command will not be sent.
    • ‘Sync Mailboxes’ and ‘Run Compliance’ actions will not work. 
    • Devices with existing access to their mailbox will continue to work.
    • Our product team has been engaged and is actively working to resolve the issue. Please follow this KB for updates.
    • Administrators can initialize a manual PowerShell session and manage user or device access as desired.  
      Please refer to this page for more information.  
    • KB-Reference: https://kb.vmware.com/s/article/89373?lang=en_US&source=email
  • Provisioning of full clone encrypted VM’s fails on vSAN with default policies (89371)
    • When provisioning encrypted full clones through View on vSAN you see the following error message in vCenter:
      ““Changing or applying VM Storage Policies with Data Service capabilities during clone operations is disallowed. VM Storage Policies with Data Service capabilities can be assigned to the provisioned VM after the clone operation has been completed and before the VM has been powered on”
    • The reason for the error is due to the policies that View creates on vSAN environments. These policies by default do not take encryption into account and do not create with an encryption policy
    • When using encrypted full clones please enable encryption on the following storage policy created by View for vSAN environments:FULL_CLONE_DISK_FLOATING_uuid-value-goes-hereExample:FULL_CLONE_DISK_FLOATING_d960c469-594e-4e82-a345-8bebc0eea226This will allow for the VM to get the correct encryption key that was assigned to the template when creating the full clone.
    • KB-Reference: https://kb.vmware.com/s/article/89371?lang=en_US&source=email
  • Week 35 Software Updates
  • Component: Workspace ONE Boxer for iOS
  • New Release: 22.08
  • Changes:
    • Support for historical S/MIME certificates with DISA Purebred
    • This feature provides support for storing more than one S/MIME certificate when using PIV-D and Purebred.
    • End users can access older emails that were encrypted with different certificates.
    • To activate or deactivate the support for historical S/MIME certificates with DISA Purebred, use the Historical S/MIME toggle button in Settings > Advanced > Enable features. By default, this feature is activated.
  • Release Date: 01.09.22
  • Release Notes
  • Component: Workspace ONE Boxer for Android
  • New Release: 22.08
  • Changes:
    • KVP for Resource URL during authentication
    • AccountOauthResourceURL is a new, account-based KVP, of type string.
    • During end-user authentication, this KVP overrides the value of the Resource URL.
    • AccountOauthResourceURL can be used with Hybrid Modern Authentication when a specific Resource URL is required.
  • Release Date: 01.09.22 (staged)
  • Release Notes
  • Component: Workspace ONE Intelligent Hub for Linux
  • New Release: 22.06
  • Changes:
    • Web Enrollment: Users can now walk through a web-based wizard to streamline the WS1 Intelligent Hub download and enrollment process. This wizard also supports integrated authentication, so WS1 Access, SAML, or any other integrated modern auth can be used to enroll a user’s Linux device in WS1 UEM.
    • Application Sampling: The application tab in the Device Details view now reports on desktop applications that are installed on enrolled linux based endpoints, including the version information.
    • Disk Encryption Detection:  Workspace ONE now identifies whether or not full disk encryption (using LUKS) is enabled on an enrolled Linux device.
    • Additional Sensor Triggers: In addition to triggering sensor retrieval during device check-ins, IT admins now have the option of triggering a sensor based on login, logout, startup or network changes on enrolled linux devices.
    • Automated Hub Upgrades: IT Admins now have the option of enabling Hub upgrades to occur automatically when new versions are released.
    • Remove Additional Dependencies on Puppet: Puppet open source is now only required for processing custom configuration profiles; not Wi-Fi or Credentials payloads as was the case previously.
  • Release Date: 01.09.22
  • Release Notes
  • Component: Workspace ONE Content for iOS
  • New Release: 22.08.1
  • Changes:
    • ISCL-181881 – Files are missing after adding a file update with name change
  • Release Date: 29.08.22
  • Release Notes
  • Component: Workspace ONE Notebook for Android
  • New Release: 22.08
  • Changes:
    • Android 13 Release Readiness
    • Bug fixes and quality improvements
  • Release Date: 30.08.22
  • Release Notes
  • Component: Workspace ONE UEM
  • New Release: 22.3.0.24
  • Changes:
    • ARES-22791: Mac Studio Assignment update missing/unselected.
    • AMST-36839: Device context based applications require valid user session to process uninstall.
    • CRSVC-31784: GSX test connection fails with SSL error.
  • Release Date: 30.08.22
  • Release Notes
  • Component: Workspace ONE UEM
  • New Release: 22.6.0.3
  • Changes:
    • MACOS-3330: Identify the cause for DB Upgrade failure due to Invalid column name ‘DevicePlatformId’.
    • MACOS-3312: MacOS DDUI Network access profile not showing option “Use as login window configuration”.
    • CMEM-186698: PowerShell failing: “User credential of the remote PowerShell server contains the special characters”.
    • AMST-36835: Device context based applications require valid user session to process uninstall.
    • AGGL-12800: Device Sync triggers RemoveApp command for iOS app.
    • AMST-36875: App sampling to query SFD when SFD is known to be installed on device.
    • AMST-36865: Seed v2206 SFD patch to UEM.
    • AMST-36850: Samples are being repeatedly queried till samples response comes.
  • Release Date: 30.08.22
  • Release Notes

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: