Omnissa Newsletter 2025 Week 47

Upcoming Omnissa Events

Event	Link and description	Speakers	Date
EUC TechInsights: A Fresh Look at Dynamic Environment Manager and App Volumes for Windows devices	In this technical session, we’ll kick off with a quick refresher on Omnissa Dynamic Environment Manager (DEM), followed by a deep dive into the new features introduced in the 25.09 release. You’ll see how DEM simplifies management of Windows 11 and Office 365 environments, integrates seamlessly with App Volumes, and supports modern application delivery across physical devices. We’ll also explore how DEM and App Volumes together streamline lifecycle management for Windows laptops. Plus, get an exclusive sneak peek at upcoming innovations – including a new cloud storage integration – and learn how you can participate in early testing. 👉 Register here:EUC TechInsights: A Fresh Look at DEM and App Volumes for Windows Devices	Pim van de Vis	2 December 15 GMT / 16CET
Omnissa Tech Deep Dive: Introducing Omnissa Secure Access	Please join Rob Beekmans & Aaron Black for a discussion about one of Omnissa’s recent product announcements regarding the Enterprise Browser functionality in one of our newest offerings – the Omnissa Secure Access Suite.  This is an exciting evolution driven by our customer and partner base as the demand of SaaS apps drives the requirements for additional access and data security controls.  This takes us beyond management and experience into the critical realm of browser security, observability, and of course Gen AI governance. Join us with questions and feedback in this early stage of our offering. 👉 Register here: Omnissa Tech Deep Dive: Introducing Omnissa Secure Access	Rob BeekmansAaron Black	10 December 16 GMT/17CET

The past Omnissa Event recordings can be accessed here: Omnissa Community Webinars – Omnissa Community

Release Updates:

• Workspace ONE Content 25.10.1 for iOS
• General Availability of Omnissa Pass 25.11 for iOS
• General Availability of Omnissa Pass 25.11 for Android
• Workspace ONE Intelligence SDK 25.10.0 for Android
• Omnissa Workspace ONE Content 25.10.1 for iOS

Current Omnissa Security Advisories

• OMSA-2025-0003: Omnissa Secure Email Gateway (SEG) updates address Server-Side Request Forgery (SSRF) vulnerability (CVE-2025-25235)
• OMSA-2025-0004: Omnissa Workspace ONE UEM addresses multiple vulnerabilities (CVE-2025-25229, CVE-2025-25231)
• OMSA-2025-0005: Omnissa Workspace ONE UEM addresses an observable response discrepancy vulnerability (CVE-2025-25236)

Find all latest advisories in the Omnissa Security Response Center

Omnissa UX Research Opportunities:

• Our goal is to gather insight into user behaviors, motivations, and goals, so we can use those insights to inform and strengthen product and design decisions.
• Interested in giving your opinion and making your voice heard? Check out what’s available!

[NEW] Smarter updates for Android – unified update controls in action

• About: Introducing Unified Update Controls (UUC) in WS1 UEM, where organizations can now take charge of how and when system and app updates roll out, specifically for Android devices. Whether it’s patching security vulnerabilities, rolling out new features, or avoiding buggy releases, UUC gives Admins the tools to keep Android fleets secure, stable, and up to date.
• Opportunity: 45-minute, 1×1 conversation to play with the latest prototype and give feedback November 17-28. Customers who complete the interview will receive swag as a thank you.
• Relevant for: Admins using WS1 UEM and involved in app/device management.
• SIGN UP HERE

KB Highlights & Announcements:

Preparing for Workspace ONE Modern SaaS Rollout (Managed Hosting / Dedicated Cloud Customers)

• Familiarize yourselves with upcoming changes with Modern SaaS, including changes in workflows, terminology, and known issues. (See – TechZone article here.)​
• Request environment migration with the Omnissa account team (CSM, TAM, AE, SE) once ready. The team will work internally to request an enablement week on your behalf.​

High Priority KBs: 

• Omnissa Access / Hub Services / Omnissa Identity Service: Upcoming URL Migration and Certificate Branding Migration (6001062)
• Preparing for Omnissa Innovation Updates (6000840)
• Legacy Domain End of support and required action for Workspace ONE Cloud-Hosted domain vmwservices.com (6000843)
• Previously announced Legacy Domain End of support and required action for Omnissa Workspace ONE and Horizon Cloud service domains  (6000836)
• Workspace ONE DEX for Horizon (URL Migration) (6000891)
• Legacy domain suggested upgrade sequence (6000894)
• Omnissa World Link Directory
  For an overview about links to customer portals and relevant information follow the above link.
  

New KBs (Links) 

• Omnissa Access: Update Application Sources (6001180)
• Windows Auto Discovery Service (WADS) End of Life. (6001184)
• iOS Native Mail App Connection Error to O365 (6001185)

Recently updated KBs (Links)

• Omnissa Horizon combined offering with VMware vSphere Foundation for VDI – FAQ (6000381)
• Windows 2025 support for Horizon brownfield Connection Server installations (6000960)
• Configure Horizon View Agent to use non-IDD display driver (6001137)
• Omnissa Access KDC Certificate Rotation for Mobile SSO (for iOS) (6001052)
• Omnissa Access / Hub Services / Omnissa Identity Service: UEM configuration Migration to the new Omnissa Access URL (6001090)
• iOS Device Enrollment Fails After iCloud Backup Restore with iOS 26 – Updated Based on Latest Apple Response (6001129)
• Omnissa Access: Omnissa Access Horizon Cloud v1 configuration Migration to the new Omnissa Access URL (6001142)
• Patch instructions to address CVEs reported in Photon OS 5 packages used in Omnissa Access (6001156)
• New Apple (iOS and macOS) Updates Not Populating Device Updates Tab (6001170)

Techzone, community and YouTube updates

• App Volumes Configuration | Omnissa
• Manually creating optimized Windows images for Horizon VMs | Omnissa
• Microsoft Teams Optimization with Horizon | Omnissa
• Horizon Cloud Overview Tours | Omnissa
• Omnissa Pass: General Availability Announcement – Omnissa technical blog
• Building Smarter AI assistants with Prompt Engineering – Omnissa technical blog
• Omnissa ONE 2025: Highlights
• From chaos to consolidation: The platform imperative

3rd Party Blog Updates & Industry News 

Beta, Lab and Tech Preview Updates 

• Omnissa Pass Beta Launch
• Get started with Omnissa Beta-program

Currently available:

• HCS for Partners – Available until 1/30/2026
• Device Trust for WS1 Tunnel* – Available until further notice
• Content for Android
• OS Optimization Tool plugin for Microsoft Deployment Toolkit (MDT)*  – Available until 11/7/2025
• Intelligent Hub for macOS – Available until 11/14/2025
• Unified Access Gateway (Horizon 8 and Horizon Cloud Service customers) – Available until 11/07/2025
• Launcher – Available until 11/7/2025
• Conditional Access – iOS Global Sign-in/Sign-Out with Entra ID* – Available until 12/31/2025
• Tunnel for iOS – Available until 11/14/2025
• Intelligent Hub for iOS – Available until 11/14/2025
• WS1 Vulnerability Defense*  – Available until 12/31/2025
• Intelligent Hub for Android – Available until 11/21/2025
• PIV-D Manager for iOS –  Available until 11/24/2025
• Boxer for Android – Available until 11/26/2025
• Web for iOS – Available until 12/1/2025
• Web for Android – Available until 12/1/2025

Coming soon:

• Boxer for iOS  — expected to start during the week of Nov 17th
• Hub for macOS – expected to start in December in the new portal
• Tunnel for macOS  — expected to start during the week of Nov 17th
• Intelligent Hub for Linux — expected to start in December in the new portal
• MQTT Printer*
• Horizon Cloud on Nutanix*
• Horizon Cloud Service on Openstack*

Latest Patch & Seed Script Updates:

OS Updates Seed Script

• Most recent update :
  • iPadOS 18.7.2 (22H124)
    iOS 18.7.2 (22H124)
    iOS 18.7.2 (22H6124)
• Last Update: CW45

Device Model Seed Script

• Seed Script to support
  • iPad17,1 – A3357 – iPad Pro 11-inch Wi-Fi (M5)
  • iPad17,2 – A3358, A3359 – iPad Pro 11-inch Wi-Fi + Cellular (M5)
  • iPad17,3 – A3360 – iPad Pro 13-inch Wi-Fi (M5)
  • iPad17,4 – A3361, A3362 – iPad Pro 13-inch Wi-Fi + Cellular (M5)
  • Mac17,2 – A3434 – MacBook Pro 14-inch (M5)
  • RealityDevice17,1 – A3416 – Vision Pro (M5)
• Last update: CW45

Workspace ONE UEM 24.02

• Patch Level: 24.2.0.37
  • RUGG-13857: Products install repeatedly if device reports Event Actions that are deleted from UEM.
  • FCA-211788: Upgrades to multiple JavaScript libraries to avoid potential cross-site scripting vulnerabilities.
  • FCA-208451: IP Address value not returning for the Device Search API result (General Query).
  • AGGL-19105: App remains on device Play Store after deactivating Android Public App on Console.
  • AGGL-17263: Denied application names and IDs in app control are not resolved to actual values when viewed in XML.
  • AAPP-20600: Device Updates page failing to load new versions (iOS/macOS).
  • AAPP-20057: Allow for Apple device enrollment if OS version has not been seeded yet.
• Last Update: CW47

Workspace ONE UEM 2406

• Patch level 24.6.0.46
  • RUGG-13731: Product with only Reboot manifest won’t be delivered to devices without force-reprocess.
  • INTEL-73644: Data discrepancy observed while creating report in Workspace ONE Intelligence.
  • FCA-211788: Upgrades to multiple JavaScript libraries to avoid potential cross-site scripting vulnerabilities.
  • ESI-728: Launcher stuck in login loop if “Always prompt for terms of use” is enabled.
  • ARES-34536: Trusted Credentials setting under Wi-fi payload cannot be saved in DDUI Profiles.
  • AAPP-20600: Device Updates page failing to load new versions (iOS/macOS).
  • AAPP-20207: VPP application versions are not updating in the Console when the country code is non-English.
  • AAPP-20057: Allow for Apple device enrollment if OS version has not been seeded yet.
• Last Update: CW46

Workspace ONE UEM 2410

• 2410 Patch 33
  • INTEL-73644: Data discrepancy observed while creating report in Workspace ONE Intelligence.
  • FS-8083: Time executed and time reported columns in the wrong format.
  • FCA-211499: API returns a 400 Bad Request, and the content of this result will not be a BaseExceptionModel object but will instead be null.
  • FCA-210698: Incorrect Exception seen when API returns a 400 Bad Request for some scenarios.
  • FCA-209987: [UI] Getting Started is appearing as a menu item in Mod UI and Astro even when it is disabled.
  • ESI-744: Admin Provisioning fails when there is no ContactID for an existing admin in UEM.
  • CRSVC-68457: ES and SG crashing because of huge AppList.
  • CRSVC-67084: Add jitter for ES event cache.
  • CRSVC-65842: Reduce DSM docker_build logs.
  • CRSVC-65334: Unnecessary connector configuration updates in CRS.
  • CRSVC-55456: Certificate list API and UI are showing incorrect number of certificates.
  • ATL-27003: Seed Workspace ONE Intelligent Hub v24.10.18 for Windows to UEM 2410.
  • ARES-35100: Rename DT Labels.
  • ARES-35007: Error occurs while editing existing Declarative profiles.
  • ARES-34936: Current Assignments of lower app version displays Installed but not assigned devices.
  • ARES-34881: Administrator is incorrectly reported in the troubleshooting log for events arising from a tag change.
  • ARES-34536: Trusted Credentials setting under Wifi payload cannot be saved in DDUI Profiles.
  • ARES-34394: Incorrect admin reported in the troubleshooting log for events arising from device tag update.
  • AAPP-20600: Device Updates page failing to load new versions (iOS/macOS).
  • AAPP-20016: (AppleTv)License count is not revoked after removing VPP app from DDV page.
  • AAPP-18838: Apple Declarative Device Management log entries in Troubleshooting Log improvements.
• Last Update: CW47

Workspace ONE UEM 2506

• Patch 13
  • RUGG-13807: Device level update status for Custom Update is not syncing after update is marked Completed.
  • FS-8083: Time executed and time reported columns in the wrong format.
  • FS-7918: Apps installed prior to enrollment and assigned to a workflow won’t show steps as completed.
  • FCA-211788: Upgrades to multiple JavaScript libraries to avoid potential cross-site scripting vulnerabilities.
  • ATL-26930: Seed – Machost to canonical release PR2506-13.
  • ARES-35315: Apps delivered through Product Provisioning removed from devices when they lose assignment.
  • ARES-35213: Profile of another tenant sometimes displayed on Device Profile list.
  • ARES-33477: A few profiles unintentionally installed on Smart Groups if it was previously assigned to it via a now-deleted Workflow.
  • AAPP-20600: Device Updates page failing to load new versions (iOS/macOS).
  • AAPP-20019: 500 Error on Purchased App API Endpoint (/mam/apps/purchased/search).
  • AAPP-19871: VPP Apps Not Uninstalled When Switching from Staging to End User on iOS Devices.
  • AAPP-19508: DEP devices could be enrolled by users other than the assigned user.
• Patch 14
  • ESI-834: Azure AD token not revoked when device is unenrolled or wiped.
• Last Update: CW47

Workspace ONE UEM 2509

• We’re excited to share the new release of Workspace ONE UEM version 2509!
• Last Update: CW45

Disclaimer

Please note: All information in this Newsletter is statically copied from various sources. Once published, these sources won’t be checked and the Newsletter won’t be updated retrospectively. In case of doubts, always check and refer to the linked source in Omnissa Docs, Techzone or Knowledgebase.