Category: MDM

  • Add the Directory Service User Groups to Workspace ONE UEM

    The admin can add one at a time or use a batch import process to add directory service user groups within Workspace ONE UEM. For when the admin has a limited number of groups to add, adding directory user groups one at a time is ideal. When the admin has multiple groups to add, it…

  • Difference between Organization Groups and User Groups

    The following tasks in Workspace ONE UEM are primarily performed by Organization groups (OG). In Workspace ONE UEM, User groups don’t replace organization groups; and rather, they are used to represent security groups and business roles. Organization Groups Devices are always tied to an OG, which is the primary difference between organization and user groups.…

  • Managing Directory User Group Integration In Workspace ONE UEM

    Without active directory integration, an alternative to custom user groups is through user group integration that applies to the existing active directory structure, providing many benefits. The admin can perform the following actions once they import existing directory service user groups as Workspace ONE UEM user groups: User Management: align user management in Workspace ONE…

  • Managing Directory Service Users in Workspace ONE UEM

    A corresponding user account must be present in the UEM console for every directory user the admin wants to manage through Workspace ONE UEM. To Workspace ONE UEM, directly add the existing directory services users. The admin can choose one of the following methods to directly add the existing directory services users to Workspace ONE…

  • VMware Identity Manager with Directory Services

    The admin is enabled to consolidate a list of the organization’s suggested Web apps and native mobile apps using VMware Identity Manager together with Workspace ONE UEM in unified application catalogs. Workspace ONE UEM is not allowed to receive directory changes from Identity Manager by this functionality. End-users must sign in only once using Workspace…

  • Microsoft Conditional Access

    Microsoft Conditional Access is available for the applications that have Microsoft Authentication Library (MSAL). This feature may be extended to applications that support SSO extension and that support SafariViewController. For iOS devices 13 and above, it can support Microsoft Conditional Access since the iOS native mail client and iOS Boxer client leverage SafariViewController. The following…

  • Conditional Access policies in Azure AD

    In Azure AD, Conditional Access policies use Compliance data by integrating Workspace ONE UEM with Microsoft. Customers are enabled to use Workspace ONE UEM device data using Workspace ONE UEM integration with Microsoft, such as device compliance state in the Azure AD conditional access policies. The integration provides this ability for individual Office 365 applications…

  • Best Practices for Customizing Open Source LDAP Directory Service Type

    Introduction Open source LDAP for directory services is supported by Workspace ONE UEM. For instance, similar to Novell e-Directory, Lotus Domino, Microsoft Active Directory, Workspace One has a Samba OpenLDAP server for Directory services. In the Linux environment, Samba OpenLDAP is a widely used LDAP server. Other than Novell e-Directory, Active Directory, or Lotus Domino,…

  • Directory Services Setup

    Introduction Including attribute mapping for user groups and users, the Directory services setup requires the admin to integrate the Workspace ONE UEM environment with the directory service. Currently, multi-domain single forest integration is supported by Workspace One. Multi-domain multi-forest integration works, however, if using LDAP – Active Directory when there is a two-way transitive trust…

  • Digital Workspace Integration in Workspace ONE

    Introduction To provide directory-based account access, the organization’s existing directory services – such as Lotus Domino, Active Directory, and Novell e-Directory integrates with Workspace ONE UEM Powered by AirWatch. Users are enabled to authenticate with Workspace ONE UEM apps with this type of account access and enrol devices using existing directory service credentials. The need…