Connecting Vanta & VMware Workspace One MDM

  • Updated

We are expanding our MDM integrations to now include VMware’s Workspace One UEM product. Admins can configure Vanta to fetch data from customers’ Workspace One accounts.

Prerequisites

Before connecting Workspace One, please create an OAuth client for your account by following this guide.
 
Connecting VMware Workspace One to Vanta
  • In Vanta:
    • Select Integrations from the left-hand navigation panel
    • Select Available and search for VMware Workspace One
    • Select Connect

Screenshot 2024-06-11 at 4.04.21 PM.png

 

  • You will need to create an OAuth client ID and secret following the instructions in this guide.
    The role used for the OAuth client must have read access to the following:
    • REST > Devices
    • REST > Profiles
    • REST > Users
    • Device Details > Security Info > Device View Security Info
  • Add the client ID and Secret in the connection module. You must also provide your Workspace One UEM domain. This will typically be in a similar format to "cnxxxx.awmdm.com".

Screenshot 2023-08-21 at 11.02.05 am.png

 

  • In this connection flow, you will be prompted to configure the time to ensure security settings are set up for new devices. Vanta will not alert newly registered computers until the time entered has passed. This is set to 3 hours by default.

Note: If multiple MDM integrations are connected, any change made here to the computer setup time will be applied to all MDM integrations.

Screenshot 2023-08-21 at 11.03.08 am.png

 

Connecting Screenlock Data to Vanta

  • Workspace One does not pass screen lock data through their API. To verify screen-lock data in Vanta, admins need to create a passcode profile in their Workspace One account and apply it to all their computers.
  • Please see VMWare Documentation for further details