Connecting Vanta & VMware Workspace One MDM

  • Updated

We are expanding our MDM integrations to now include VMware’s Workspace One UEM product. Admins can configure Vanta to fetch data from customers’ Workspace One accounts.

 

Prerequisites

  • Before connecting Workspace One, please create an OAuth client for your account by following this guide.
     

Connecting VMware Workspace One to Vanta

  • In Vanta:
    • Select Integrations from the left-hand navigation panel
    • Select Available and search for VMware Workspace One
    • Select Connect

Screenshot 2023-08-21 at 10.56.19 am.png

 

  • You will need to create an OAuth client ID and secret following the instructions in this guide.
    The role used for the OAuth client must have read access to the following:
    • REST > Devices
    • REST > Profiles
    • REST > Users
    • Device Details > Security Info > Device View Security Info
  • Add the client ID and Secret in the connection module. You must also provide your Workspace One UEM domain. This will typically be in a similar format to "cnxxxx.awmdm.com".

Screenshot 2023-08-21 at 11.02.05 am.png

 

  • In this connection flow you will also be prompted to configure the time it takes to ensure security settings are set up for new devices. Vanta will not alert on newly registered computers until the time entered has passed. This is set to 3 hours by default. 

    Note: If multiple MDM integrations are connected, any change made here to the computer setup time will be applied to all MDM integrations.

Screenshot 2023-08-21 at 11.03.08 am.png

 

Connecting Screenlock Data to Vanta

  • Workspace One does not pass screenlock data through their API. To verify screenlock data in Vanta, admins need to create a passcode profile in their Workspace One account and apply it to all their computers.
  • Follow these instructions:  here for macOS and here for windows.