Omnissa Newsletter 2025 Week 50

Upcoming Omnissa Events

Event	Link and description	Speakers	Date
Omnissa Tech Deep Dive: A fresh look at DEM: What’s new and why DEM + App Volumes is the perfect fit for your Windows Devices	Please join Pim Van De Vis along with AJU & Jason Misleh to hear the latest updates in Omnissa Dynamic Environment Manager to support Windows 11, Office 365, cloud storage and more.In this session we will do a technical deep dive on DEM (refresher), present what’s new in the 25.09 release, demonstrate how DEM can manage Windows 11 and Office 365, supports AppVolumes. We will also take a sneak peak into the future as we may need some volunteers to test our new Cloud storage integration.It’s shaping up to be an credibly insightful session.Be sure to “RSVP” to the event to reserve your spot.👉 Register here: Omnissa Tech Deep Dive: A fresh look at DEM: What’s new and why DEM + App Volumes is the perfect fit for your Windows Devices	Pim Van De VisAJUJason Misleh	14 January 202616 GMT/17CET

The past Omnissa Event recordings can be accessed here: Omnissa Community Webinars – Omnissa Community

Release Updates:

• Workspace ONE Content 25.11 for Android
• Workspace ONE PIV-D Manager for iOS 25.11
• Workspace ONE Intelligent Hub 25.11 for macOS
• Workspace ONE Tunnel 25.12 for Android
• Workspace ONE Web 25.11 for iOS

Current Omnissa Security Advisories

• OMSA-2025-0003: Omnissa Secure Email Gateway (SEG) updates address Server-Side Request Forgery (SSRF) vulnerability (CVE-2025-25235)
• OMSA-2025-0004: Omnissa Workspace ONE UEM addresses multiple vulnerabilities (CVE-2025-25229, CVE-2025-25231)
• OMSA-2025-0005: Omnissa Workspace ONE UEM addresses an observable response discrepancy vulnerability (CVE-2025-25236)

Find all latest advisories in the Omnissa Security Response Center

Omnissa UX Research Opportunities:

• Our goal is to gather insight into user behaviors, motivations, and goals, so we can use those insights to inform and strengthen product and design decisions.
• Interested in giving your opinion and making your voice heard? Check out what’s available!

*Great things coming soon!

KB Highlights & Announcements:

New BETA Portal Launched:
We’re thrilled to announce that the enhanced Omnissa Beta Portal is now live!

• Quick Start – Watch the demoBeta Portal for External Testers
• Explore the new portal now: https://beta.omnissa.com

New Omnissa Certified Engineer Exams are available to book:

• 2W0_25: Workspace ONE Engineer – 2025
• 2H0_25: Horizon Engineer – 2025

Preparing for Workspace ONE Modern SaaS Rollout (Managed Hosting / Dedicated Cloud Customers)

• Familiarize yourselves with upcoming changes with Modern SaaS, including changes in workflows, terminology, and known issues. (See – TechZone article here.)​
• Request environment migration with the Omnissa account team (CSM, TAM, AE, SE) once ready. The team will work internally to request an enablement week on your behalf.​

High Priority KBs: 

• Omnissa Access / Hub Services / Omnissa Identity Service: Upcoming URL Migration and Certificate Branding Migration (6001062)
• Preparing for Omnissa Innovation Updates (6000840)
• Legacy Domain End of support and required action for Workspace ONE Cloud-Hosted domain vmwservices.com (6000843)
• Previously announced Legacy Domain End of support and required action for Omnissa Workspace ONE and Horizon Cloud service domains  (6000836)
• Workspace ONE DEX for Horizon (URL Migration) (6000891)
• Legacy domain suggested upgrade sequence (6000894)
• Omnissa World Link Directory
  For an overview about links to customer portals and relevant information follow the above link.
  

New KBs (Links) 

• Workspace ONE UEM Baselines Update – Planned Service Outage (6001204)
• [RUGG:13926] Repeated Product Delivery and Device Reboots When Reboot Manifest Is Used With Other Actions (6001210)
• Deployment details now retained upon Assignment or Smart Group updates (6001211)
• Linux Agent URL Redirection Feature Prevents Chrome/Edge Browser Launch Due to Root Ownership of Browser Configuration Folders (6001213)
• Failure of “Data Protection” Profile on Windows 11 24H2 Due to Windows Information Protection (WIP) Removal (6001215)
• VDI deployed using ClonePrep occasionally cannot activate Microsoft OS/Office products. (6001216)

Recently updated KBs (Links)

• 2026 Workspace ONE UEM Maintenance Schedule (81448)
• Antivirus executable exclusion list for Omnissa Horizon (2082045
• Build numbers and versions of Omnissa App Volumes (89040)
• Capturing new teams as a package in App Volumes 4.x (6000003)
• Deleted connection still exists in the Active Directory Lightweight Directory Services (AD LDS) database after removing the replica server from a Omnissa Horizon View cluster (2083758)
• Horizon Cloud – Troubleshooting UAG issues (6001197)
• Horizon VGPU: Nvidia L4/L40 Increased Video Memory Usage (94692)
• How to switch provisioning scheme for a Omnissa Horizon Instant Clone Pool or Farm (81026)
• Inconsistent Management of macOS Applications with Alphanumeric Version Numbers by macOS Intelligent Hub (6001084)
• Omnissa Unified Access Gateway(UAG): Guidelines when Integrating Radius (82726)
• Pinch in Pinch out Zoom gesture on physical machine’s touchpad causes ctrl key to remain in pressed state. (6001201)
• Removal of the “Desired State Management” Option in Windows and macOS Application Assignments (6001132)
• Resolved – VPP User Based License Issue When Using Same Apple ID on Multiple Devices (6001192)
• Unified Access Gateway(UAG): UAG Always Forwards HTTP(s) Requests to the configured Portal Page (59536)
• Enabling Windows 2025 Support in Horizon Brownfield Environments of Connection Server (6000960)

Techzone, community and YouTube updates

• Updated security and compliance for Workspace ONE UEM Windows devices
• Surprise! Just in time for the holidays… Printer Management is HERE (almost)
• Manually creating optimized Windows images for Horizon VMs
• How to Subscribe to the weekly Newsletter in the Community Portal

3rd Party Blog Updates & Industry News 

• Nutanix: An Open Challenge to VMware
• Now’s the Time to apply and become an Omnissa Tech Insider for 2026! – Digital Workspace
• Automating Omnissa UAG Certificate Uploads with Docker — A Complete Guide

Beta, Lab and Tech Preview Updates 

• Omnissa Pass Beta Launch
• Get started with Omnissa Beta-program

Currently available:

Intelligent Hub for Linux	Until 12/10/2025	Hosted in WS1 Intelligent Hub project
WS1 Tunnel for macOS	Until 12/15/2025	Hosted in WS1 Tunnel project
Horizon Clients	Until 12/22/2025	Hosted in Horizon Client project
Conditional Access (iOS Global SISO w Entra ID)	Until 12/31/2025	Hosted in Unified Endpoint Management project
MQTT Printer Tech Preview	Until 12/31/2025	Hosted in Unified Endpoint Management project
Vulnerability Defense	Until 12/31/2025	Hosted in WS1 Vulnerability Defense project
Device Trust for WS1 Tunnel	Until Jan 2026	Hosted in WS1 Tunnel project
HCS for Partners Beta	Until 1/31/2026	Hosted in Horizon Cloud project
HCS on OpenStack Beta	Until mid March 2026	Hosted in Horizon Cloud project
Horizon Cloud on Nutanix Tech Preview	Until mid April 2026	Hosted in Horizon Cloud project

Coming soon:

• OS Optimization Tool SCCM Plugin — Please join Horizon 8 project  Early December
• WS1 Boxer (Android, iOS) — Please join WS1 Boxer project   mid January, 2026
• Intelligent Hub for iOS — Please join WS1 Intelligent Hub project   mid-late January, 2026

Latest Patch & Seed Script Updates:

OS Updates Seed Script

• Most recent update :
  • iPadOS 18.7.3 (22H217)
    iOS 18.7.3 (22H217)
    visionOS 26.2 RC (23N301)
    tvOS 26.2 RC (23K51)
    macOS 26.2 RC (25C56)
    iPadOS 26.2 RC (23C52)
    iOS 26.2 RC (23C52)
    tvOS 26.2 RC 2 (23K53)
• Last Update: CW50

Device Model Seed Script

• Seed Script to support
  • iPad17,1 – A3357 – iPad Pro 11-inch Wi-Fi (M5)
  • iPad17,2 – A3358, A3359 – iPad Pro 11-inch Wi-Fi + Cellular (M5)
  • iPad17,3 – A3360 – iPad Pro 13-inch Wi-Fi (M5)
  • iPad17,4 – A3361, A3362 – iPad Pro 13-inch Wi-Fi + Cellular (M5)
  • Mac17,2 – A3434 – MacBook Pro 14-inch (M5)
  • RealityDevice17,1 – A3416 – Vision Pro (M5)
• Last update: CW45

Workspace ONE UEM 24.02

• Patch Level: 24.2.0.37
  • RUGG-13857: Products install repeatedly if device reports Event Actions that are deleted from UEM.
  • FCA-211788: Upgrades to multiple JavaScript libraries to avoid potential cross-site scripting vulnerabilities.
  • FCA-208451: IP Address value not returning for the Device Search API result (General Query).
  • AGGL-19105: App remains on device Play Store after deactivating Android Public App on Console.
  • AGGL-17263: Denied application names and IDs in app control are not resolved to actual values when viewed in XML.
  • AAPP-20600: Device Updates page failing to load new versions (iOS/macOS).
  • AAPP-20057: Allow for Apple device enrollment if OS version has not been seeded yet.
• Last Update: CW47

Workspace ONE UEM 2406

• Patch level 24.6.0.46
  • RUGG-13731: Product with only Reboot manifest won’t be delivered to devices without force-reprocess.
  • INTEL-73644: Data discrepancy observed while creating report in Workspace ONE Intelligence.
  • FCA-211788: Upgrades to multiple JavaScript libraries to avoid potential cross-site scripting vulnerabilities.
  • ESI-728: Launcher stuck in login loop if “Always prompt for terms of use” is enabled.
  • ARES-34536: Trusted Credentials setting under Wi-fi payload cannot be saved in DDUI Profiles.
  • AAPP-20600: Device Updates page failing to load new versions (iOS/macOS).
  • AAPP-20207: VPP application versions are not updating in the Console when the country code is non-English.
  • AAPP-20057: Allow for Apple device enrollment if OS version has not been seeded yet.
• Last Update: CW46

Workspace ONE UEM 2410

• 2410 Patch 35
  • RUGG-13770: Custom update creation is limited to loading a maximum of 10 policies.
  • RUGG-13731: Product with only Reboot manifest won’t be delivered to devices without performing force-reprocess.
  • MACOS-4459: Fix macOS restriction to lock desktop wallpaper.
  • FCA-211042: Configure admin roles with Read-Only access to All Settings.
  • FS-8831: Silent failures during script execution causes it to be stuck in progress for macOS devices..
  • FS-8580: Workflow fails on macOS 26 RC 1 devices due to step timeout persisting after completion.
  • FS-8564: Scripts unable to execute due to an unexpected reboot causing a corrupted DB on macOS devices.
  • ESI-728: Launcher stuck in login loop if “Always prompt for terms of use” is enabled.
  • CRSVC-67576: Throttle event log sync failure notifications.
  • CRSVC-67375: Add Windows Pure SCEP Flow Support for OID-SAN Scenario in 24.10.
  • CRSVC-67264: Improvements in throttling event log sync failure notifications.
  • CRSVC-66851: Devices are part of compliance target despite not being in assignment group.
  • CMCM-191640: Admin repo empty after clicking on ‘sign-in’ in Content app.
  • ATL-27188: Seeding SFD 24.10.10 build to UEM 2410 patch release.
  • ATL-27173: Seed latest Machost to 2410.
  • ARES-35269: Error occurs intermittently while viewing Profile List View.
  • ARES-35213: Profile of another tenant sometimes displayed on Device Profile list.
  • ARES-34661: Removing Smart Group from profile assignments may show devices from other assigned Smart Groups as removed.
  • ARES-33874: Email settings of Boxer app cannot be accessed or updated sometimes.
  • ARES-33477: Few profiles installed on devices of Smart Group previously assigned through a deleted Workflow.
  • ARES-33343: Declarative profile not visible on Device Profiles list when accessed from any Parent Organization Group.
  • ARES-32810: Error occurs while accessing App Removal Log page if any app is in ‘Reset’ state.
  • AMST-44385: App removal failing instantly for a Windows internal application.
  • AGGL-19140: Maintenance Window is pushed even when Auto Update Policy is “Never” .
  • AGGL-17150: Internal apps stop installing automatically after configuring app control profile and Allow list app group.
  • AAPP-20215: Delay in VPP app installation across large iOS device fleet.
  • AAPP-19620: Unable to install/upgrade VPP apps on selected devices using ‘Install on Selected’ option.
• Last Update: CW49

Workspace ONE UEM 2506

• Patch 17
  • UM-10252: Clear & Save actions are failing for ‘Service Provider (AirWatch) Certificate’ and ‘Identity Provider Certificate’.
  • RUGG-13821: Push Relay Server stuck at In-Progress stage if large file upload to FTP fails.
  • MACOS-6589: New versions of native Mac app uploads improperly handling rebranded (com.ws1) Bundle ID.
  • FS-8580: Workflow fails on macOS 26 RC 1 devices due to step timeout persisting after completion.
  • FCA-211628: EventLogSyncFailure settings are not seen in Manage Account Settings.
  • ESI-825: MTD Activation through Smart Groups fail when deployed from Partner tenant.
  • CMCM-191640: Admin repo empty after clicking on ‘sign-in’ in Content app.
  • CMCM-191535: Unable to access network shares on Content app post UEM upgrade to 24.10.
  • ATL-27264: Seed – Machost v2506.4931 to Workspace ONE UEM 2506.
  • ARES-35595: Apps cannot be sorted on App Group app list view.
  • ARES-34661: Removing Smart Group from profile assignments may remove profile from other assigned Smart Groups.
  • AMST-44776: Removed approved updates Sampling Logic to avoid delays in DM Resource Processing.
  • AMST-44611: Fixed issue with Workspace ONE Intelligence not pulling through Sensor data for Customer OGs created under a Partner OG.
  • AGGL-19570: Per-app VPN settings not working when VPN profile includes additional payloads.
  • AAPP-20322: iOS Device Updates details page update status grid filters are not functioning as expected.
  • AAPP-20171: The tag of the new iOS 18.4 restriction keys do not show that the device needs to be supervised.
  • AAPP-20151: Improvements in VPP license sync logic.
  • AAPP-19914: Workspace ONE UEM Console inherit setting blocked for Apple > SCEP.
• Last Update: CW50

Workspace ONE UEM 2509

• Patch 1
  • FS-8831: Enhanced error handling for socket exceptions to prevent silent failures during script execution.
  • FS-8564: Scripts unable to execute due to an unexpected reboot causing a corrupted DB on macOS devices.
  • FCA-211680: Add link to collect logs in the user details dropdown.
  • ATL-27185: Seed Machost v2509.4802 to 2509 patch 1.
  • ATL-27071: Seed Workspace ONE Intelligent Hub v25.06.5 for Windows to UEM 2509.
  • ARES-35268: Apps delivered through Product Provisioning removed from devices when they lose assignment.
  • ARES-34933: “An error has occurred” sometimes appears while performing actions related to apps and profiles.
  • AGGL-19412: Outdated settings shown when viewing ChromeOS Credentials profiles.
  • AAPP-20600: Device Updates page failing to load new versions (iOS/macOS).
  • AAPP-20593: Fix SKU mapping for Device Attestation and Release Device from ABM.
  • AAPP-20016: Apple TV – VPP License is not revoked after removing app from Device Details page..
• Last Update: CW49

Disclaimer

Please note: All information in this Newsletter is statically copied from various sources. Once published, these sources won’t be checked and the Newsletter won’t be updated retrospectively. In case of doubts, always check and refer to the linked source in Omnissa Docs, Techzone or Knowledgebase.