Omnissa Newsletter 2025 Week 51

Upcoming Omnissa Events

Event	Link and description	Speakers	Date
Omnissa Tech Deep Dive: A fresh look at DEM: What’s new and why DEM + App Volumes is the perfect fit for your Windows Devices	Please join Pim Van De Vis along with AJU & Jason Misleh to hear the latest updates in Omnissa Dynamic Environment Manager to support Windows 11, Office 365, cloud storage and more.In this session we will do a technical deep dive on DEM (refresher), present what’s new in the 25.09 release, demonstrate how DEM can manage Windows 11 and Office 365, supports AppVolumes. We will also take a sneak peak into the future as we may need some volunteers to test our new Cloud storage integration.It’s shaping up to be an credibly insightful session.Be sure to “RSVP” to the event to reserve your spot.👉 Register here: Omnissa Tech Deep Dive: A fresh look at DEM: What’s new and why DEM + App Volumes is the perfect fit for your Windows Devices	Pim Van De VisAJUJason Misleh	14 January 202616 GMT/17CET

The past Omnissa Event recordings can be accessed here: Omnissa Community Webinars – Omnissa Community

Release Updates:

• Horizon Server and Agent 2512/8.17 Release
• Horizon Clients 2512/8.17 Release
• Omnissa Access 2512 SaaS Release
• Omnissa Hub Services 2512 SaaS Release
• Workspace ONE Intelligent Hub for Linux 25.11
• Workspace ONE React Native SDK 25.10.2
• Workspace ONE Content 25.11.1 for Android
• Omnissa Identity Service
• Workspace ONE Intelligent Hub 24.10.19 for Windows
• Secure Email Gateway 2.34
• Unified Access Gateway 2512
• Omnissa Dynamic Environment Manager 2512
• Omnissa App Volumes 2512
• Omnissa ThinApp 2512
• Workspace ONE Tunnel 25.12 for Android
• Workspace ONE Web 25.11 for Android

Current Omnissa Security Advisories

• OMSA-2025-0003: Omnissa Secure Email Gateway (SEG) updates address Server-Side Request Forgery (SSRF) vulnerability (CVE-2025-25235)
• OMSA-2025-0004: Omnissa Workspace ONE UEM addresses multiple vulnerabilities (CVE-2025-25229, CVE-2025-25231)
• OMSA-2025-0005: Omnissa Workspace ONE UEM addresses an observable response discrepancy vulnerability (CVE-2025-25236)

Find all latest advisories in the Omnissa Security Response Center

Omnissa UX Research Opportunities:

• Our goal is to gather insight into user behaviors, motivations, and goals, so we can use those insights to inform and strengthen product and design decisions.
• Interested in giving your opinion and making your voice heard? Check out what’s available!

*Great things coming soon!

KB Highlights & Announcements:

New BETA Portal Launched:
We’re thrilled to announce that the enhanced Omnissa Beta Portal is now live!

• Quick Start – Watch the demoBeta Portal for External Testers
• Explore the new portal now: https://beta.omnissa.com

New Omnissa Certified Engineer Exams are available to book:

• 2W0_25: Workspace ONE Engineer – 2025
• 2H0_25: Horizon Engineer – 2025

Preparing for Workspace ONE Modern SaaS Rollout (Managed Hosting / Dedicated Cloud Customers)

• Familiarize yourselves with upcoming changes with Modern SaaS, including changes in workflows, terminology, and known issues. (See – TechZone article here.)​
• Request environment migration with the Omnissa account team (CSM, TAM, AE, SE) once ready. The team will work internally to request an enablement week on your behalf.​

High Priority KBs: 

• Omnissa Access / Hub Services / Omnissa Identity Service: Upcoming URL Migration and Certificate Branding Migration (6001062)
• Preparing for Omnissa Innovation Updates (6000840)
• Legacy Domain End of support and required action for Workspace ONE Cloud-Hosted domain vmwservices.com (6000843)
• Previously announced Legacy Domain End of support and required action for Omnissa Workspace ONE and Horizon Cloud service domains  (6000836)
• Workspace ONE DEX for Horizon (URL Migration) (6000891)
• Legacy domain suggested upgrade sequence (6000894)
• Omnissa World Link Directory
  For an overview about links to customer portals and relevant information follow the above link.
  

New KBs (Links) 

• End of Availability of Omnissa Advanced Monitoring for Horizon, powered by ControlUp (6001220)
• Workspace ONE UEM: MSMQ permissions and resource errors after Windows Update KB5071544 (6001221)
• Horizon Client Next Overview (6001222)
• Epic Hyperdrive installation on App volumes (6001223

Recently updated KBs (Links)

• Workspace ONE UEM 25.06 Upgrade – What to Expect for Latest and Deferred Environments (6001032)
• [Resolved] [RUGG:13926] Repeated Product Delivery and Device Reboots When Reboot Manifest Is Used With Other Actions (6001210)
• 2026 Workspace ONE UEM Maintenance Schedule (81448)
• Advance Deprecation Announcement for Horizon View API and Replacement with REST API (6000139)
• Horizon Cloud Service – next-gen – Handling Sysprep Generalization Issues in Windows 11 24H2 and above (6001087)
• Horizon environment trigger “Update option values” tasks every 5 minutes in vCenter Web Client Recent Tasks (56982)
• Omnissa Access and Hub Services SaaS IP address ranges used for network configuration (68035)
• Supported Guest Operating Systems for Horizon Linux Agent for Horizon 8 2103 and Later (87277)
• Supported Non-Windows 10 and 11 Guest Operating Systems for Horizon 8 Agent (78715
• Supported Operating Systems, Microsoft Active Directory Domain Functional Levels, and Events Databases for Omnissa Horizon 8 (78652)
• Supported versions of Windows 10 and Windows 11 on Horizon Client (58096)
• Supported Windows 10 and Windows 11 Guest Operating Systems for Horizon Agent and Remote Experience, for Omnissa Horizon 8.x (2006 and Later) (78714
• Tunnel on Samsung devices running Android 13 may experience ‘No Applications Installed’ error. (6001140)

Techzone, community and YouTube updates

• Horizon Cloud Configuration
• Horizon 8 Configuration
• Horizon 8 Architecture
• Horizon Cloud Architecture

Beta, Lab and Tech Preview Updates 

• Get started with Omnissa Beta-program

Currently available:

HCS for Partners	Until 01/30/2026	Hosted in Horizon Cloud project
Vulnerability Defense	Until 01/31/2026	Hosted in WS1 Vulnerability Defense project
Conditional Access – iOS Global Sign-in/Sign-Out with Entra ID	Until 01/31/2026	Hosted in Unified Endpoint Management project
Device Trust for Workspace ONE Tunnel	Until 01/31/2026	Hosted in WS1 Tunnel project
MQTT Printer	Until 01/31/2026	Hosted in Unified Endpoint Management project
Horizon Cloud Service on OpenStack	Until 03/26/2026	Hosted in Horizon Cloud project
Horizon Cloud on Nutanix	Until 04/10/2026	Hosted in Horizon Cloud project

Coming soon:

• OS Optimization Tool SCCM Plugin — Please join Horizon 8 project  Early December
• WS1 Boxer (Android, iOS) — Please join WS1 Boxer project   mid January, 2026
• Intelligent Hub for iOS — Please join WS1 Intelligent Hub project   mid-late January, 2026

Latest Patch & Seed Script Updates:

OS Updates Seed Script

• Most recent update :
  • iOS 18.7.3 (22H217)
  • tvOS 26.2 RC (23K51)
  • iPadOS 26.2 (23C55)
  • iOS 26.2 (23C55)
  • tvOS 26.2 (23K54)
  • macOS 15.7.3 (24G419)
  • macOS 14.8.3 (23J220)
• Last Update: CW51

Device Model Seed Script

• Seed Script to support
  • iPad17,1 – A3357 – iPad Pro 11-inch Wi-Fi (M5)
  • iPad17,2 – A3358, A3359 – iPad Pro 11-inch Wi-Fi + Cellular (M5)
  • iPad17,3 – A3360 – iPad Pro 13-inch Wi-Fi (M5)
  • iPad17,4 – A3361, A3362 – iPad Pro 13-inch Wi-Fi + Cellular (M5)
  • Mac17,2 – A3434 – MacBook Pro 14-inch (M5)
  • RealityDevice17,1 – A3416 – Vision Pro (M5)
• Last update: CW45

Workspace ONE UEM 24.02

• Patch Level: 24.2.0.37
  • RUGG-13857: Products install repeatedly if device reports Event Actions that are deleted from UEM.
  • FCA-211788: Upgrades to multiple JavaScript libraries to avoid potential cross-site scripting vulnerabilities.
  • FCA-208451: IP Address value not returning for the Device Search API result (General Query).
  • AGGL-19105: App remains on device Play Store after deactivating Android Public App on Console.
  • AGGL-17263: Denied application names and IDs in app control are not resolved to actual values when viewed in XML.
  • AAPP-20600: Device Updates page failing to load new versions (iOS/macOS).
  • AAPP-20057: Allow for Apple device enrollment if OS version has not been seeded yet.
• Last Update: CW47

Workspace ONE UEM 2406

• Patch level 24.6.0.47
  • RUGG-13821: Push Relay Server stuck at “In-Progress” stage if large file upload to FTP fails.
  • RUGG-13731: Repeated Product Delivery and Device Reboots when reboot Manifest is used with other actions.
  • MACOS-6015: Organization Groups cannot inherit Intelligent Hub settings.
  • ESI-775: Staging user enrollment failing for multiple platforms.
  • CRSVC-67416: Resource delivery blocked when compliance policy with Block/Remove action for specific profiles is pending evaluation.
  • AGGL-17150: Internal apps stop installing automatically after configuring app control profile and Allow list app group.
  • AAPP-20215: Delay in VPP app installation across large iOS device fleet.
• Last Update: CW51

Workspace ONE UEM 2410

• 2410 Patch 36
  • UM-10252: Clear & Save actions are failing for ‘Service Provider (AirWatch) Certificate’ and ‘Identity Provider Certificate’.
  • RUGG-13821: Push Relay Server stuck at In-Progress stage if large file upload to FTP fails.
  • MACOS-6589: New versions of native Mac app uploads improperly handling rebranded (com.ws1) Bundle ID.
  • CMEM-187215: Test connection button does not work if there are multiple MEM configurations.
  • CMCM-191535: Unable to access network shares on Content app post UEM upgrade to 24.10.
  • ARES-33952: Incorrect total profile count shown in device’s profile list when page size is smaller than total records.
  • ARES-33604: Deployment Tracking view displays an incorrect ‘Assigned’ count of 0 upon adding a new profile version.
  • ARES-32643: Editing assignments of an app fails if an uninstallation script exists in the Organization Group above the app’s group.
  • AGGL-19053: FRP remove profile command not received in Mod Stack enabled environments when Admin performs a Device Wipe.
  • AGGL-17740: App configuration, App policy, and per-app VPN settings unexpectedly removed from AMAPI devices.
  • AAPP-20394: ABM resources do not get installed upon enrollment when custom enrollment is enabled.
  • AAPP-20322: iOS Device Updates details page update-status grid filters are not functioning as expected.
  • RUGG-13731: Repeated Product Delivery and Device Reboots When Reboot Manifest Is Used With Other Actions
• Last Update: CW51

Workspace ONE UEM 2506

• Patch 17
  • UM-10252: Clear & Save actions are failing for ‘Service Provider (AirWatch) Certificate’ and ‘Identity Provider Certificate’.
  • RUGG-13821: Push Relay Server stuck at In-Progress stage if large file upload to FTP fails.
  • MACOS-6589: New versions of native Mac app uploads improperly handling rebranded (com.ws1) Bundle ID.
  • FS-8580: Workflow fails on macOS 26 RC 1 devices due to step timeout persisting after completion.
  • FCA-211628: EventLogSyncFailure settings are not seen in Manage Account Settings.
  • ESI-825: MTD Activation through Smart Groups fail when deployed from Partner tenant.
  • CMCM-191640: Admin repo empty after clicking on ‘sign-in’ in Content app.
  • CMCM-191535: Unable to access network shares on Content app post UEM upgrade to 24.10.
  • ATL-27264: Seed – Machost v2506.4931 to Workspace ONE UEM 2506.
  • ARES-35595: Apps cannot be sorted on App Group app list view.
  • ARES-34661: Removing Smart Group from profile assignments may remove profile from other assigned Smart Groups.
  • AMST-44776: Removed approved updates Sampling Logic to avoid delays in DM Resource Processing.
  • AMST-44611: Fixed issue with Workspace ONE Intelligence not pulling through Sensor data for Customer OGs created under a Partner OG.
  • AGGL-19570: Per-app VPN settings not working when VPN profile includes additional payloads.
  • AAPP-20322: iOS Device Updates details page update status grid filters are not functioning as expected.
  • AAPP-20171: The tag of the new iOS 18.4 restriction keys do not show that the device needs to be supervised.
  • AAPP-20151: Improvements in VPP license sync logic.
  • AAPP-19914: Workspace ONE UEM Console inherit setting blocked for Apple > SCEP.
• Last Update: CW50

Workspace ONE UEM 2509

• Patch 2
  • MACOS-6589: New versions of native Mac app uploads improperly handling rebranded (com.ws1) Bundle ID.
  • FS-8580: Workflow fails on macOS 26 RC 1 devices due to step timeout persisting after completion.
  • ESI-825: MTD Activation through Smart Groups fail when deployed from Partner tenant.
  • CRSVC-70627: Tunnel App showing Access Denied until reinstalled.
  • CRSVC-68364: Handling actions when the device is in NotNow state (iOS/MacOS).
  • CMCM-191640: Admin repo empty after clicking on ‘sign-in’ in Content app.
  • ATL-27265: Seed – Machost 2509.4939 to Workspace ONE UEM 2509.
  • ARES-35269: Error occurs intermittently while viewing Profile List View.
  • AGGL-19570: Per-app VPN settings not working when VPN profile includes additional payloads.
  • AGGL-19522: After running the seed script, the API level for Android 16 is displayed as null.
  • AAPP-20322: iOS Device Updates details page update-status grid filters are not functioning as expected.
  • AAPP-20207: VPP application versions are not updating in the Console when the country code is non-English.
  • AAPP-19914: Workspace ONE UEM Console inherit setting blocked for Apple -> SCEP.
  • RUGG-13731: Repeated product delivery and device reboots when Reboot Manifest is used with other actions.
• Last Update: CW51

Disclaimer

Please note: All information in this Newsletter is statically copied from various sources. Once published, these sources won’t be checked and the Newsletter won’t be updated retrospectively. In case of doubts, always check and refer to the linked source in Omnissa Docs, Techzone or Knowledgebase.