Workspace ONE – What’s New

    At VMworld this year I caught a session on the updates to Workspace ONE, a product I have liked for a while now and seeing the new changes to it only adds to the admiration. VMware are backing this product a lot and I can see why.

    What is Workspace ONE?

    So what is Workspace One and how can it help the business?  From the VMware statement it is described as the following

    “VMware Workspace ONE is the simple and secure enterprise platform that delivers and manages any app on any smartphone, tablet or laptop. By integrating identity management, real-time application delivery, and enterprise mobility management, Workspace ONE engages digital employees, reduces the threat of data leakage, and modernises traditional IT operations for the Mobile Cloud Era.”

    The key message there is Workspace ONE can be leveraged to modernise the workplace by providing a single secure point for users to access their applications no matter what device they are connecting from.  Whether the applications are hosted on-premises or offered as a SaaS (Software as a Service) platform they can be integrated in a way the user only has to log onto their own portal to have access to all assigned applications.

    By using other VMware products such as Airwatch for Enterprise Mobility Management, fine-grained conditional access polices can be enforced to those devices, as well as products such as on-premise Horizon Enterprise, can deliver users secure VDI access to any device.  Accelerating the adoption of BYOD.

    What’s New?

    Latest improvements to Workspace One are very exciting and really add to a compelling product.  The first big announcement is Workspace ONE Intelligence.  This delivers a deep insight into the workspace as well as delivering powerful automation.  Using the identify of each user, data can be captured from the device to the applications.

    Using deep analytics it can assist IT admins to better plan and optimise their application and deployment policies. 

    • Insights – one location for the entire digital workspace, search and query to analyse the data.  Run reports to identify patch vulnerabilities, see installation progress for application deployments and produce hardware / software inventories.
    • Planning – plan deployments on real data around real world application performances in the workspace, plan for application license refreshes efficiently and plan for same-day OS support.
    • Automation – new rule engine to create contextual workflows that takes remediation actions based on security threats, 3rd party API extensibility and automatically halt application deployment if an abnormal crash rate is detected.

    This intelligence will be extended in future releases to take advantage of machine learning to predict and remediate anomalies.

    Another big announcement was the extended support for devices and provisioning of those devices. Support for Dell devices for Auto Enrollment allowing for a device to be instantly provisioned as the device is given to the user, greatly speeding up the process.

    Could this spell the end of VMware Mirage?

    Using Dell devices and Workspace ONE not only can the devices be provisioned, but they can also be managed further, hardware can be replaced proactively, assets can be managed centrally, as well as forced security setting all via the firmware integration.

    These features have also been extended to Google with their recent partnership with VMware, allowing the same application accessibility and device management to Google Chromebooks.

    Using device management can help accelerate adoption for Windows 10 but can also help manage those devices in terms of security patching and automated remediations.  All on top of providing users secure access to their assigned applications.

    The final updated feature to cover would be the support for Office 365 as a managed application. Office 365 can be presented to users through mobile or any device they authenticate with providing a secure access anywhere.  Dynamic conditional access can be configured the same way as well as integration with existing MFA providers and Azure AD.

    Conclusion

    Workspace ONE provides an excellent method to securely federate users access to the digital workplace, by adding these features and growing the product it begins to fit more and more business use cases and becomes a really powerful tool for any EUC deployment.