Workspace ONE: Everything you need to know

VMware’s Workspace ONE Unified Endpoint Management (UEM) IT management suite gives organisations the tools they need to support and maintain control of the diverse and complex endpoint environments of today. A mix of virtualisation, mobile device management and security solutions, Workspace ONE provides an intelligence-driven, secure and simple digital enterprise workspace platform.

Here’s everything you need to know about this integrated technology framework designed to enable and manage digital workspace, mobile device and desktop delivery of software and data, providing end users with real-time access to the apps and information they need. And they can do this from any location, via any device, regardless of whether the information is stored in a data centre or available through the cloud.

What is Workspace One?

Workspace ONE is a digital workplace platform that combines a number of solutions developed by cloud infrastructure and virtualisation company VMware. Built on their AirWatch Unified Endpoint Management (UEM) technology, it integrates Workspace ONE Access (formerly VMware Identity Manager) and their VMware Horizon VDI software.

This provides organisations with an amalgamation of Enterprise Mobility Management (EMM) proficiencies, virtual app and desktop delivery, single sign-on (SSO), identity manager and other digital workspace capabilities in one easy-to-manage solution. By integrating multi-platform endpoint management, access control and application management, Workspace ONE unifies the digital workspace tools needed to manage every endpoint – regardless of ownership model and platform.

How does Workspace ONE work?

An enterprise platform that makes it possible for organisations to deliver a digital workspace with the tools like Windows apps that empower their workforce, the VMware Workspace ONE solution is a multi-platform management system that radically transforms traditional VDI with unprecedented flexibility, speed, scale and simplicity – all at an attractively low cost.

Supporting a variety of deployment models including in the cloud, on-premises and hybrid with different components deployed between the two, VMware Workspace ONE’s architecture can be divided into various end-user components and infrastructure tools.

How do you benefit from Workspace ONE?

An intelligence-driven digital workspace platform, VMware Workspace ONE enables organisations to deliver and manage any app on any device, anywhere simply and securely. Available as a cloud service or on-premises deployment, it provides an engaging experience with a combination of powerful access control, multiplatform endpoint management and application management tools. Some of the key benefits it offers include:

  • Consistent, flexible endpoint management
  • Intelligent insights and automation
  • Comprehensive digital workspace security
  • Device-aware access policies
  • Reduced administrative burden
  • Consolidated management tools
  • Automated compliance
  • Customised dashboards and reporting
  • Hosted virtual apps and desktops
  • Real-time visibility

What is Unified Endpoint Management?

Unified Endpoint Management (UEM) is a combination of tools that control and protect end user devices, including tablets, smartphones, laptops, and desktop computers. The main Unified Endpoint Management technologies use enterprise mobility management (EMM) tools, such as mobile device management (MDM) and mobile application management (MAM).

How do you benefit from Unified Endpoint Management?

Implementing Unified Endpoint Management has many benefits, such as:

  • Boost endpoint security for all IT environments
  • Single sign on access
  • View all devices from one location or device
  • Record accurate activity logs
  • Obtain real-time security notifications, and
  • Safeguard against cyber-attacks.

How are Mobile Device Management and Enterprise Mobility Management different?

Mobile device management (MDM) enables remote users to complete certain functions from tablets and phones. MDM’s main features are location tracking, device security, enrolment, and device positioning. Managers can also use it to conduct real-time reporting, inventory tracking, and security protocols enforcement.

Mobile device management can be problematic because administrators have access to employees’ private data on personal devices. That is why mobile application management (MAM) was created to limit access to just a few mobile apps on an employee’s device. Enterprise mobility management (EMM) combines MDM and MAM to secure company data that is stored on employees’ mobile devices.

Unified endpoint management is a type of EMM solution with comprehensive capabilities. UEM uses a single EMM system to manage and track several desktops, laptops, tablets, and mobile phones.

What are Unified Endpoint Management features and capabilities?

The main features and capabilities of UEM are:

  • Reduces IT costs
  • Boosts security
  • Increases productivity while lowering workloads
  • Increases troubleshooting speeds
  • Software deployment
  • Provides secure access
  • Provides self-service access options
  • Patch Management
  • Delivering virtual desktops
  • Comprehensive Single-Pane Endpoint Management
  • Multi-vendor and device support
  • IT inventory management
  • Remote Desktop Manager
  • Service packs, and
  • Active Directory reports.

Is VMware Workspace ONE Mobile Device Management?

It is important to note that MDM is not exactly a piece of software. Instead, it is a solution where software like Workspace ONE is used to provision mobile devices while keeping the assets of an organisation, like sensitive corporate data, secure. MDM policies managed by the IT administrator involve strict security protocols, processes and – yes – the application of MDM software to control the use of mobile devices within a work environment.

Beyond being able to manage mobile device inventories and provisioning for said devices, the majority of MDM applications include tools that help protect the content, applications and data on a mobile device. This device-centric approach is very different to unified endpoint management where a user-centric approach is used.

So, the short answer is yes – VMware Workspace ONE is a solution for mobile device management. But it is, in fact, a UEM solution. And MDM is just one of the features that it offers.

What Is Mobile Device Management (MDM)?

A Mobile Device Management solution is specialised software that gives IT admins the ability to securely monitor, manage and secure any mobile devices that have access to sensitive corporate data. As the capabilities of mobile devices improve and adoption increases, many MDM solutions or clients have evolved into enterprise mobility management (EMM) solutions like Workspace ONE.

The features offered and operating systems supported by an MDM can vary a lot between different solutions, but there are some key features that the top solutions share. These key features include:

  • Device tracking, including maintaining an inventory of every enrolled device, along with specific hardware and software information for each.
  • Mobile management, to ensure that all devices and applications can be updated and serviced from a central location, onboarding new devices (corporate owned or BYOD), employees and applications, single sign own access, deploying software updates and changing app configurations, performing device diagnostics and troubleshooting any issues end-users may experience.
  • Application security with app management capabilities of MDM software, so an enterprise can whitelist or blacklist different applications, automate the background deployment of important security patches, provide single sign on secure access and restrict access to sensitive data according to custom-defined rules.
  • Enterprise App Repository, including an enterprise app catalogue meaning IT administrators can quickly populate a repository of the both popular and commonly used apps – especially useful for Windows apps.
  • Identity and access management to set different access controls and configure multiple restrictions, organisations can ensure data security and compliance for every end-user and digital workspace based on custom user groups and device type.
  • Endpoint security which covers every device that has access to a corporate network and includes wearable tech, IoT devices, non-traditional mobile devices and even custom-built devices using outdated legacy operating systems and applications.

Understanding data sovereignty

Data sovereignty refers to two things. One, where the data is located and two, and more importantly, who can access it. Date sovereignty, requires that data can only be accessed according to the laws and regulations of the country in which the custodian of the data (ie a cloud provider) is owned and the data physically stored.
Data sovereignty laws are designed to protect the data of citizens and organisations within their sovereign borders.

How does Virtual Desktop Infrastructure (VDI) maximise security for your digital workspace?

Virtual Desktop Infrastructure (VDI) security is defined as the best practice and technology employed to secure virtual desktops.

VDI security architecture has been designed to mitigate the security issues that can be associated with virtual environments. VMware defines the typical measures as follows:

  • Real-time compliance monitoring
  • Unified management platform
  • Data loss prevention, and
  • Vulnerability scanning.

What are the benefits of retaining data from virtual desktops within a sovereign country?

Knowing where data ‘lives’, how it is moved and who can access It is critical for many organisations, particularly when it comes to their sensitive data. Ensuring VDI data is protected within a sovereign framework delivers confidence that citizen/organisational data is not accessed, intercepted or used by not entitled, non-sovereign, agents.

Understanding VMware AirWatch

VMware AirWatch is one of the pioneers of MDM technology, and it has been available to business customers since 2003. While mobile technology is far older than this — and has been in use by Australian businesses since before the turn of the century — AirWatch’s services have been honed over the years to meet the evolving needs of modern users. Effectively, AirWatch is helping to bring about the next step in the MDM journey, moving towards a holistic environment of Unified Endpoint Management.

VMWare AirWatch is now known as Workspace ONE.

The Unified Endpoint Management (UEM) technology, Workspace ONE UEM, that Workspace ONE is built on, was formerly known as AirWatch.

Why deploy AirWatch in a sovereign secure Australian cloud

VMware AirWatch now known as Workspace ONE is designed to protect businesses and to keep their corporate resources and data safe as the operational environment grows more dynamic. To achieve this, the AirWatch solution needs to manage devices enrolled, track and log device data, provide complete device security and maintain control over device settings, all of which needs to be stored in a way that is both secure and easily accessible.

Under Australia’s data policies, any business that collects data has a responsibility to protect it. This includes data from solutions such as AirWatch. With this in mind, a secure Australian cloud is the best option for deploying AirWatch. Your business is protected by data sovereignty law from within the domestic Australian market, while the flexibility of the cloud enables leverage of the data even at high storage volumes.

There are a number of different benefits that come from this policy across the full deployment lifecycle, from activation and enrolment through to device management and beyond.

  1. Immediate and remote activation capabilities
  2. Better control over enrolment
  3. Data security that meets Australian data protection laws and regulations
  4. Effective, centralised device management
  5. Straightforward configuration updates across all devices

Organisations can achieve their goals faster with Workspace ONE

AUCloud’s Virtual Desktop-as-a-Service is built on VMware’s Horizon 7 platform. So, our VMware specialists can show organisations how to replace their traditional, rigid work environment with a more flexible modern Anywhere Workplace model powered by the VMware Workspace ONE platform.

Onboard new end users, devices and applications within minutes, and without needing to contact the helpdesk every time. Designed to support any device ownership model, organisations that employ a BYOD policy no longer need to worry about “shadow IT,” thanks to Workspace ONE. Employees won’t need to circumvent IT policies to use their preferred devices and apps with single sign on (SSO) to complete their daily tasks their devices can be supported and managed remotely.

As a VMware Cloud Provider Partner, AUCloud can show businesses of all shapes and sizes how they can accelerate their digital transformation for a fraction of the price. Contact AUCloud today to find out about all the benefits that the VMware Workspace ONE solution has to offer. Speak to our sales team by calling 1800 282 5683 or you can email us on sales@australiacloud.com.au.

AUCloud is proud to be a VMware Sovereign Cloud Partner.