| Event | Link and description | Speakers | Date |
| EUC TechInsights – Technical Mastery of Horizon Cloud on Azure | Join us to gain deep insights into the technical mastery that sets Omnissa Horizon Cloud on Azure apart. This session will dive into how to architect and optimize Horizon Cloud environments for agility, cost efficiency, and enterprise scalability. Learn how to fine-tune deployments, maximize resource usage, and deliver a seamless user experience — all while leveraging the full power of Azure. Whether you’re scaling up or refining your current setup, this session will help you stay ahead in the Cloud VDI race.Link to event: Webinar Registration – Zoom | Vernon Lihou, SME Lead Solution EngineerMichael Barnett, Product Line Manager | 6 May |
| Community webinar – Big game hunting: Ransomware’s high-stakes war on enterprises | We invite you to join an insightful session, where we will focus on the most successful cybercrime operation in history. As a professional in the EUC space, understanding how ransomware gangs operate, evolve, and target enterprises is essential. Link to event: Big game hunting: Ransomware’s high-stakes war on enterprisesHuib Dijkstra, Lead Solution Engineer at Omnissa, will cover what Omnissa architects and subject matter experts can do to harden defenses and prevent breaches. Join this session for critical insights into the ever-evolving threat landscape. | Huib Dijkstra | 7 May |
| Omnissa Tech Deep Dive: Bringing VDI goodies to your physical desktops and laptops | We invite you to a demo-packed session, where you will learn how to bring the benefits of App Volumes and DEM (Dynamic Environment Manager) to your physical Windows devices.This brings the same benefits and features you know from your Horizon VDI environments to your desktops and laptops. You have full control over the application lifecycle, ensuring the best user experience and more! Omnissa Tech Deep Dive: Bringing VDI goodies to your physical desktops and laptops | Pim Van De Vis, Customer Success Engineer | 18 June |
| Omnissa ONE returns in 2025 | SAVE THE DATEOmnissa ONE America Las Vegas, Cosmopolitan Hotel Sept 15th – Sept 17th Omnissa ONE Europe Amsterdam, Maritim Hotel Amsterdam Oct 7th – Oct 9th Omnissa ONE Asia Tokyo, ANA InterContinental Hotel Nov 17th – Nov 19th |
Release Updates:
Omnissa Workspace ONE Hub Services
What’s New in the May 2025 Release
Conditional Entitlements Phase 1: Lock Apps based on Access Policy
Access policy rules set by admins in Omnissa Access determine which apps an end user can launch, based on factors such as their network range, device type, or group membership. Currently, all apps are available to the user in the Hub catalog, and when they launch an app that is restricted by Access policy rules, they are denied access during the launch process.
The conditional entitlements enhancement to the Hub catalog improves the user experience by locking (greying out) apps that a user is restricted from launching based on Access policy rules. The user interface only reflects existing restrictions that have been configured in the customer tenant, and does not change any behavior for unrestricted apps.
This is Phase 1 of a two-phase rollout of conditional entitlements. In Phase 2, Hub Services admins will have the option to either display (as locked) restricted apps or hide them entirely from end users.
This feature is limited to the Hub web portal only.
The scope of this feature is limited to only those apps on which Access policies are applicable.
Note: As with all preview releases, certain aspects of this feature may change before it goes live.
End User Rating and Statistics report for Horizon Cloud Service Next-Gen resources
From Intelligent Hub, end users can now like or dislike (thumbs up or thumbs down) a Horizon Cloud Service Next-Gen app or desktop.
Hub Services admins can now download a consolidated report of all apps and their ratings statistics. The statistics include the number of likes and dislikes for each Horizon Cloud Service Next-Gen app.
Apple Books in iOS Hub
End users can now access Apple books on their iOS Hub app.
Email recipients and Archive Notifications
Hub Services admins can now save email recipients to an archived notification so that an archived notification can be resent to the same audience without re-entering their email addresses.
Workspace ONE Intelligent Hub 24.04.17 for Windows
What’s New
- Bug Fixes ONLY
Resolved Issues
- HUBW-18074 – Enhanced BitLocker to go, now start encryption only after recovery key is saved to DB
- HUBW-18035 – Post Enrolment Onboarding screen not showing up when HUB is launched
- HUBW-18008 – Migrated Hub from using WMIC to MMI as WMIC is deprecated in Windows 11
- HUBW-17978 – Fixed issue with Post Enrollment Onboarding screen not autolaunching during AutoPilot with AD Join
Workspace ONE Boxer 25.04 for iOS
What’s NewNew Features
- (Experimental) Rich text formatting in the email compose screen
- Note: End users can turn on this functionality using a feature flag, Rich text compose. This feature flag is present in Advanced settings > Enable features.
- When composing, replying, and forwarding emails, users can select the formatting icon from the bottom bar. As a result, several formatting options such as bold, italics, bullet points, text color, and fonts are available which can be applied to the emails.
- With this feature, end users have a visually appealing and organized presentation of their emails.
- Health Check Indicators Control Setting
- Administrators can control the display of health check indicators in the Workspace ONE Boxer interface using an application-level, boolean, KVP HealthCheckIndicators.
- By default, the value of the KVP is True.
- When the KVP value is True, all health indicators are displayed.
- As a result, end users can monitor system health and performance effectively.
- When the KVP is set to False, all health indicators are hidden.
- This option can be used when the health check indicators are not required in the current context for the end users.
- Quality improvements and crash fixes
Resolved IssuesBINXI-24573 [Delegated Calendars] Event reminders are not set correctly when the calendar is delegated
BINXI-24711 [Delegated Calendar] Some calendar events in the delegated account are not visible due to parsing issues
BINXI-24721 [HealthCheck] Initial enrolment for an unmanaged account incorrectly displays a red alert in the Settings tab
BINXI-24749 [Emails] Emails have incorrect dates when the initial S/MIME data is empty
Workspace ONE Secure Email Gateway 2.32
What’s New:
- We are always working to improve Workspace ONE Secure Email Gateway with every release. There are no new features to introduce for this release.
Workspace ONE Tunnel for Windows 25.02
What’s New:
Reintroducing support for Rapid DTR functionality.
- Rapid DTR is now enabled by default.
- Tunnel configuration and DTR updates may now be delivered in real time to the Tunnel client. This has the benefit of decoupling and reducing certificate regeneration when you want to deliver Device Traffic Rules.
- The Tunnel client will instead check in with UEM every 4 hours and on service start.
- Technical Requirements for this feature:
- Workspace ONE HUB version 24.10 or later
- For UEM version 2410 and lower, enable the following Feature Flag: RemoveWindowsTunnelProfileDependencyFeatureFlag
Resolved Issues:
- PPAT-18822: Unable to access applications over loopback address.
- PPAT-19054: Tunnel icon not available in system tray.
- PPAT-19131: Improvements to memory management to address intermittent memory spikes.
Known Issues:
- In the event a user has exited Tunnel from the system tray, the user may not be prompted for MFA, if enabled. To re-enable, the Tunnel service will need to be restarted, either manually or via system reboot. Note that exiting Tunnel from the system tray only impacts MFA scenarios, and Tunnel will still be active and running in the background.
Current Omnissa Security Advisories
- OMSA-2025-0001: Horizon Client for Windows addresses local privilege escalation vulnerability (CVE-2025-25230)
- OMSA-2025-0002: Omnissa Unified Access Gateway (UAG) updates address Cross-Origin Resource Sharing Bypass vulnerability (CVE-2025-25234)
Find all latest advisories in the Omnissa Security Response Center
Omnissa UX Research Opportunities:
- Our goal is to gather insight into user behaviors, motivations, and goals, so we can use those insights to inform and strengthen product and design decisions.
- Interested in giving your opinion and making your voice heard? Check out what’s available!
Help design the Horizon Admin Console around the way you work
- About: Omnissa Research invites you to be a design partner, giving you a direct voice in crafting experiences that truly understand Horizon Admins as people—not just users. We’re focused on designing around your job responsibilities, challenges, and goals.
- Opportunity: 8-minute multiple-choice survey. Upon completing, you can enter a drawing for the chance to win Omnissa swag!
- Relevant for: Admins using/managing Horizon 8 and/or Horizon Cloud: First-Gen / Next-Gen.
- SURVEY HERE (open until end of day 5/06)
KB Highlights & Announcements:
Preparing for Workspace ONE Modern SaaS Rollout (Managed Hosting / Dedicated Cloud Customers)
- For Shared SaaS, environments have already been enabled or will be enabled automatically in the near future
- Familiarize yourselves with upcoming changes with Modern SaaS, including changes in workflows, terminology, and known issues. (See – TechZone article here.)
- Request environment migration with the Omnissa account team (CSM, TAM, AE, SE) once ready. The team will work internally to request an enablement week on your behalf.
- Environment clean-up* (resources outside of tenant boundary e.g., global resources).
- Remove/migrate invalid resources (apps, profiles, policies) from the console.
- Remove/migrate invalid SGs.
- Ensure all users/devices are at or under Customer/Partner OGs. If users exist above Customer/Partner OGs with devices enrolled, device enrollment may be required.
- Validate Smart Group & app exclusion. See KB here.
- Update Workspace ONE UEM to the latest version prior to Mod Stack enablement, minimum UEM 24.06.
- Review the list of known issues and changes aggregated in the weekly newsletter below. Ensure resolutions/workaround are implemented as applicable.
- Develop a testing plan post migration and communicate with internal stakeholders.
- KB Article Overview
- Announcement & Updates
- Administration changes for Workspace ONE UEM Modern SaaS Architecture | Omnissa
- Workspace ONE UEM – Modern SaaS Architecture Rollout – December Update (6000206)
- Smart Group exclusions now managed at version level in modern SaaS architecture enabled Workspace ONE UEM Environments (6000662)
- Application and Profile management restricted to Customer Organization Group (and Partner Organization Group) or below in Modern SaaS architecture enabled UEM environments (6000196)
- Introducing WS1 UEM Next-Gen SaaS: Device List View, Resource Delivery and Deployment Tracking Modernization Improvements in Tech Preview Environment CN135 (94042)
- Modernization Update: Consolidated Modernized Services for Hosted SaaS (91520)
- Known Issues – Resolved
- Intelligent Hub for macOS must be upgraded to version 24.07.1 to prevent macOS Profile removal from being blocked with Mod Stack (Resolved in macOS Hub 24.07.1+)
- Profiles Assigned Through Freestyle Workflows Installed on Unintended Devices (6000667)(Resolved in UEM 24.06.0.13+)
- macOS Profiles shows “Installed but not assigned” and contains profile duplicates (6000682)(Resolved in macOS Hub 24.07.2+)
- [Modern Architecture] ChromeOS Device Sync fails (6000731)
- ARES-28824 – Known Issue with Sorting Applications on Device Details Page with Modern SaaS Architecture Enabled UEM Environments (6000670)
- [Resolved] Tagging Operations Behavior Change in Mod Stack Enabled Environments (6000180) (Enhanced in Workspace ONE UEM 2406 Patch 22 and 2410)
- Known Issues – Ongoing
- ARES-28824 – Known Issue with Sorting Applications on Device Details Page with Modern SaaS Architecture Enabled UEM Environments (6000670)
- Evaluated device count higher than Assigned count in Deployment Tracking for Modern SaaS architecture enabled UEM Environments (6000191)
- Known issues of Product Provisioning in the UEM modernized stack (6000686)
- Workspace ONE UEM – Modern Stack Device-Based Events are not exported via Syslog Integration (6000677)
- ARES-30657 – For some internal apps, devices receive lower app version instead of the highest assigned version in modern-architecture enabled UEM environments (6000718)
- FileVault Recovery Keys are missing for macOS devices after Modern Stack Migration (6000719)
- FileVault Disk Encryption Pop Up for macOS Devices after Modern Stack Update (6000722)
- [Modern Architecture] Devices Removed from Assignment Groups with “Enterprise Version” Filter (6000730)
High Priority KBs:
- Omnissa World Link Directory
For an overview about links to customer portals and relevant information follow the above link. - System Migration Changes Impacting Workspace ONE and Horizon Customers (97841)
The end-user computing (EUC) division of Broadcom will transition from VMware-hosted systems to EUC-hosted systems in April and May 2024. This transition is part of our preparation to become a standalone entity following the acquisition of EUC by KKR.
Recently added KBs (Links)
- Vulnerability Response Team: Omnissa PGP Public Key for Secure Communication (6000850)
- Horizon URL Content Redirection Helper Extension 2503 (6000852)
- Managed Apps Not Automatically Reinstalled After iCloud Restore on DEP Enrolled iOS Devices (6000853)
- Horizon Cloud Service first-gen: Required upgrade to Cloud Connector 2.5 (6000855)
- Intermittent timeouts observed during Assist session initiation on Android devices. (6000856)
Recently updated KBs (Links)
- Cross-Origin Resource Sharing (CORS) with Horizon 8 and loadbalanced HTML5 access. (85801)
- Horizon CService transition to Omnissa (6000824)
- How to convert old format license keys to new Omnissa license key format (6000695)
- HTML Access: Delay in reconnecting to Horizon desktop when Imprivata OneSign 7.2 is in use (85892)
- Keystrokes and mouse inputs are delayed with Horizon Agent 7.13 when connecting using PCOIP. (87163)
- Legacy Domain End of support and required action for Workspace ONE Cloud-Hosted domain vmwservices.com (6000843)
- Linux agent RPM package fails to install on some older RHEL 8 systems. (87416)
- Locating Workspace ONE license information in Customer Connect (2961361)
- Omnissa Access and Hub Services Branding and URL Domain Changes. (6000834)
- Omnissa Horizon Cloud Service on Microsoft Azure: Instructions to address CVE-2021-44832, CVE-2021-44228 and CVE-2021-45046 in Horizon Agent Installer (HAI) (87157)
- Omnissa Horizon combined offering with VMware vSphere Foundation for VDI – FAQ (6000381)
- RDSH Applications : Unable to drag certain remote applications (74691)
- Troubleshooting ACC Connectivity Issues After AWCM Migration to AWS (6000822)
- Trusted Network Detection on Windows (93457)
- Upcoming Changes to Email Domains for Omnissa Access Notifications (6000793)
- URL Content Redirection does not work for non-browser apps on Omnissa Horizon Mac clients systems running earlier editions of macOS 11 & macOS 12 (85733)
- URL Content Redirection from Horizon Agent to Horizon Client, not functioning after upgrading Chrome/Edge to version 130 or above (6000372)
- USB logs collection enhancement for Omnissa Horizon Client and View Agent 2012 and later (86349)
- Windows 10 multi-session does not trigger “All AppStacks attached” (83673)
3rd Party Blog Updates & Industry News
Introducing Edge for Business security connectors
Beta, Lab and Tech Preview Updates
Currently available:
- Intelligent Hub for Android Managed API Feature – Available until further notice
- MSAL Global Sign-in/Sign-out for Shared Devices– Available until further notice
- HCS for Partners – Available until 01/30/2026
- Horizon 8 on VCD – Available until 09/30/2025
- Conditional Access – iOS Shared Device Mode for Entra ID* (Requires Shared SaaS UAT) — Available until 4/30/2025
- Windows Server Management* — Available until 6/27/2025
- XR Hub — Available until 4/28/2025
- Tunnel for macOS — Available until 4/25/2025
- Tunnel for iOS — Available until 4/28/2025
- Experience Management – web app monitoring* — Available until 4/28/2025
- Omnissa Device Trust connector for Microsoft Edge for Business* — Available until 5/16/2025
Coming soon:
- Omni*– April
- Hub for Android — Wk of 4/28
- Hub for iOS — mid May
- Web (iOS, Android) — May
- Content for iOS — May
Past Omnissa Event Recordings
| Omnissa Online | Recording of Omnissa Online Event: YouTube Recording | Various | |
| EUC TechInsights – Reimagine Application Management: Unlock the Power of App Volumes | Is your application management strategy ready for a transformation? Join us to explore how decoupling applications from operating systems with portable VHDs can simplify deployments, enhance scalability, and boost efficiency. Discover | Jeff UlatoskiDirector Product Management | Feb 4, 2025 |
| EUC TechInsights – Stay Ahead in IT Management with Workspace ONE, why best things in life are not always free | Choosing the right device management platform goes beyond upfront costs and basic features. As your business grows, will your solution scale with you? Some platforms offer a solid start, but others require complex scripting, third-party add-ons, and workarounds—leading to hidden costs and increased risk. Welcome! You are invited to join a webinar: EUC TechInsights – Stay Ahead in IT Management with Workspace ONE, why best things in life are not always free. After registering, you will receive a confirmation email about joining the webinar. | Pim van de Vis | Feb 25, 2025 |
| Exploring Workspace ONE UEM Frontline and What’s New with Android Management API | o Session 1 – Omnissa Workspace ONE UEM and DEX for Frontline Use Cases – What’s new in Analytics for Frontline Deployments – What’s new in configuring the experience for Frontline devices (Launcher) – What’s new in managing and maintaining Frontline devices o Session 2 – What’s New with Android Management API – What is Android Management API? – AMAPIenhancements with Workspace ONE UEM 2410 – What’s next for AMAPI in 2025 Exploring Workspace ONE UEM Frontline and What’s New with Android Management API | Mitch Berk, Senior Director of Product Management; Owais Syed, Product Line Manager; Nick Brouillette, Group Product Line Manager & Manuel Perez, Product Manager | Feb 25 2025 |
| Omnissa Tech Deep Dive: What’s new with Windows software distribution? | Whether you’re a newbie or a veteran of deploying Windows apps, this session will provide an A to Z discussion about software distribution, as well as best practices, troubleshooting, and new functionality.Join Omnissa subject experts @Jo Harder, @Grischa Ernst, @Phillip Helmling, @Saurabh Jhunjhunwala, @Sujay Gopalan, @Camille Debay to learn about new options and improved ways to streamline configuration and deployment of applications.Omnissa Tech Deep Dive: What’s new with Windows software distribution? | @Jo Harder, @Grischa Ernst, @Phillip Helmling, @Saurabh Jhunjhunwala, @Sujay Gopalan, @Camille Debay | Mar 26 2025 |
| Increase the value of your Omnissa deployment with advanced data and automation: powered by Intelligence and Freestyle Orchestrator | Join us to discover how Omnissa Intelligence and Omnissa Freestyle Orchestrator can help you unlock advanced data insights and automation, maximizing the value of your Omnissa deployment.Increase the value of your Omnissa deployment with advanced data and automation: powered by Intelligence and Freestyle Orchestrator | Evan HurstNigitha AlugubelliMitch Berk | Apr 2 2025 |
| Omnissa Tech Deep Dive: Enrich your access policies with more data for better security | @Peter Björk will cover the security capabilities in the Omnissa platform, real-time and continuous data sharing, and access decisions based on more data about the user, devices, and session.Omnissa Tech Deep Dive: Enrich your access policies with more data for better security | Peter Björk | Apr 16 2025 |
Latest Patch & Seed Script Updates:
- Most recent update :
- visionOS 2.4.1 (22O251)
- tvOS 18.4.1 (22L261)
- macOS 15.4.1 (24E263)
- iPadOS 18.4.1 (22E252)
- iOS 18.4.1 (22E252)
- Last Update: CW18
- Seed Script to support
- iPad Air 11-inch (M3) Wi-Fi
- Last update: CW12
- Patch Level 23.6.0.47
- RUGG-13443 – Product fails to honour applicability rule when oemBuildVersion attribute is used more than once in applicability rule.
- FCA-208683 – Intelligence Opt-In flow showing error screen after clicking on ‘Opt-In’ button.
- AAPP-18903 – VPP app Epic Rover app fails to install.
- Last Update: CW11
- Patch level 23.10.0.48
- FCA-207991 – Updated console notification templates.
- Last Update: CW16
- Patch Level: 24.2.0.28
- AGGL-18379 – Android checked-out or checked-in devices fail to install the required resources based on the smart group membership.
- AMST-43082 – Fixed issue with AppX app deployment not working after Hub and SFD were upgraded in UEM 24.2.0.18.
- AAPP-18578 – Schedule OS Update commands in Queueing state are not removed when excluding the device at smart group.
- Last Update: CW17
- Patch level 24.6.0.32
Modernized Environments
- AAPP-18837 – Supervised iOS devices cannot be deleted.
- ARES-31601 – Count of profiles on the Device Details Summary page does not match the profile listed in the Device Details tabs.
- FCA-209869 – ‘Query Device’ action was not working for a bulk selection of devices on the list view.
- FCA-209970 – Device List View OS version filter was not working for iOS devices.
- RUGG-13456 – Product status incorrectly displayed as Non-Compliant despite successful installation.
All Environments
- AAPP-18693 – iOS 18.3 and macOS 15.3 restrictions.
- AAPP-18853 – iOS 18.4 and macOS 15.4 restrictions for ADE profile, application access keys, and skip keys.
- ARES-30073 – Support app configuration values up to 30,000 characters.
- MACOS-5635 – Defaults for new keys in macOS SSO Extension payload are not being applied correctly.
- Patch level 24.6.0.33
- AMST-43406 – Seeding latest SFD 23.10.7 build with UEM 2406.
- Last Update: CW18
- Patch level 24.10.0.8
Modernized Environments
- ARES-32318 – App configured to be installed through Product Provisioning gets removed automatically from devices.
- ARES-31601 – Count of profiles on the Device Details Summary page isn’t matching with the profile listed in Device Details.
- ARES-32114 – Profile name missing from ‘Install’ and ‘Remove events in device log for Desktop devices for admin-triggered force actions from UEM Console.
- AAPP-18837 – Supervised iOS devices cannot be deleted.
- ARES-32296 – Unable to apply Dependency App filter for Windows Internal apps on Internal App List View page.
All Environments
- ARES-30941 – Admin unable to enter multiple custom values for profile payloads with dropdown select fields.
- AAPP-18693 – iOS 18.3 and macOS 15.3 Restriction Keys.
- CRSVC-59850 – Multiple phone numbers, sims, and IMEIs are visible for Android and Apple devices.
- PPAT-19282 – Post modern stack enablement, a “device unknown to gateway” error is seen on tunnel app when DTR rules are edited and published.
- MACOS-5594 – Privacy preferences profile failing to install on macOS device.
- AAPP-18578 – Schedule OS Update commands in Queueing state are not removed when excluding the device at Smart Group.
- FCA-210103 – UEM Device Location Log support for non DST timezones.
- AGGL-18561 – Unable to Override Privacy Settings.
- CRSVC-60875 – Device Wipe Log report has no entries.
- Last Update: CW18
Disclaimer
Please note: All information in this Newsletter is statically copied from various sources. Once published, these sources won’t be checked and the Newsletter won’t be updated retrospectively. In case of doubts, always check and refer to the linked source in Omnissa Docs, Techzone or Knowledgebase.
Leave a Reply