Perhaps you are an existing Workspace ONE UEM customer or you are starting off fresh with a brand new Workspace ONE UEM tenant – and in comes a Welcome to Workspace ONE Access email. Now what? Workspace ONE Access is engine that drives the Workspace ONE Platform. It not only provides Access Management capabilities but … More Getting Started with Workspace ONE UEM and Workspace ONE Access
Workspace ONE Access now has the capability to factor in your login risk into authentication decisions. The login risk score uses the proprietary risk scoring engine from Workspace ONE Intelligence. When enabled, Workspace ONE Risking Scoring will analyze your login behavior and set a baseline for your profile. Workspace ONE Intelligence will provide a risk … More Workspace ONE Access: Login Risk Score
Workspace ONE Access provides a powerful conditional access engine that factors in both user and device information when permitting access to your enterprise resources. In this blog, I’m going to walk through some of the best practices for setting up access policies to ensure you are getting the proper balance of security and user experience. … More Workspace ONE Access: Best Practices in Policy Management
In this blog, I’m going to walk through configuring Workspace ONE Access as the Primary IDP for Office 365. We will walk through the process of federating your Azure domain with Workspace ONE Access and run through a few test cases. I will NOT be covering : Creating Users in Azure AD (ms-DS-ConsistencyGUID is used … More Integrating Workspace ONE Access with Microsoft Office 365
Workspace ONE Access will soon offer support FIDO2 Web Authentication( WebAuthN) on Windows 10 and MacOS devices. This means when logging into your Horizon Resources or any SAAS application that uses Workspace ONE Access, you can leverage Windows Hello, Touch ID, or Yubikey for authentication. With this upcoming release, end users can self register their … More Strengthening Security with FIDO2 WebAuthn Support for Workspace ONE Access + Horizon
If you are looking at doing Certificate-Based Authentication in Workspace ONE, we always recommend you setup a 3rd Party Certificate Authority. Although Workspace ONE UEM does provide an internal CA, it may not provide the flexibility you require to meet all your requirements. In this blog, we are going to walk through configuring Active Directory … More Setting up a 3rd Party CA with Workspace ONE in your Lab Environment
If you’ve not already configured Multi-Factor Authentication (MFA) for your users – seriously, what are you waiting for? There are dozens of different MFA solutions on the market today with varying capabilities including push notifications along with support for biometric verification. So why am I so excited for MFA in the Intelligent Hub? No registration … More Bringing MFA into the Intelligent Hub
In 2018, VMware and Okta jointly released the ability to share device trust signals between Workspace ONE Access (formally known as VMware Identity Manager) and the Okta Identity Cloud. This initial integration allowed you to validate if a device was trusted during an Okta application sign-on policy. Although this integration has been widely adopted and … More Introducing Factor-Based Device Trust with VMware and Okta
In this blog, we are going to setup Azure AD as a 3rd Party IdP to provide seamless authentication into the Workspace ONE Access Digital Workspace. This blog assumes that you are using native Azure AD authentication or using a federated domain that is NOT Workspace ONE Access. Lets start by logging into our downloading … More Using Azure AD as a SAML IdP in Workspace ONE Access
In a perfect world, we would like you to use the wizards to configure Mobile SSO because it greatly reduces the number of steps required to complete the UEM Integration AND perform the integration. The wizard will also create API Keys that are not subject to standard rate limiting. For whatever reason that you are … More Setting up Mobile SSO Manually
Steve The Identity Guy 