EUC TECH: Managing iOS Devices with Workspace ONE and Okta

In today’s digital age, managing mobile devices has become an essential aspect of endpoint computing. With the increasing use of iOS devices in the workplace, it is crucial to ensure that these devices are properly managed and secured. In this blog post, we will explore how to manage iOS devices using Workspace ONE and Okta.

Before we dive into the configuration process, let’s first understand why managing iOS devices is essential. iOS devices are popular among end-users due to their ease of use and versatility. However, these devices can also pose a significant security risk if not properly managed. Unmanaged devices can lead to data breaches, unauthorized access, and other security threats. Therefore, it is crucial to ensure that all iOS devices used in the workplace are properly managed and secured.

Workspace ONE and Okta provide an ideal solution for managing iOS devices. Workspace ONE is a unified endpoint management (UEM) platform that allows IT administrators to manage and secure various endpoints, including iOS devices. Okta, on the other hand, is an identity and access management (IAM) platform that provides secure authentication and authorization. By combining these two platforms, IT administrators can create a seamless and secure experience for end-users.

To begin managing iOS devices with Workspace ONE and Okta, follow these steps:

1. Log in to your Okta Admin Console and go to Security > Device Integrations. Click the Endpoint Management tab and then click Add Platform. Select iOS as the platform and click Next.

2. Configure the management attestation by selecting Use existing key if you already have a secret key, or generate a new secret key using the default setting. Copy the provided secret key to your clipboard for later use.

3. In the Enrollment link field, enter the URL provided by Workspace ONE UEM for redirecting end-users with unenrolled devices.

4. Log in to your Workspace ONE UEM Console and navigate to the Apps section. Press the ADD APPLICATION button to add the Okta Verify application. Select Platform (Apple iOS) and enter the Application Name (Okta Verify). Press Next to continue.

5. You should see the Okta Verify app in the search results. Press SELECT on the right to add the app to your Inventory. Adjust settings as needed, such as application label, and press SAVE & ASSIGN to continue.

6. Within the Distribution menu, enter a Name, select a group (Workspace ONE Assignment Group(s)), and set the App Delivery Method to Auto.

7. In the Application Configuration menu, enable Send Configuration and click ADD to add the following configuration keys:

Configuration Key: managementHintValue Type: String Configuration Value: Enter the secret key you copied from the Okta Console (management attestation configuration)

Configuration Key: OktaVerify.OrgUrlValue Type: String Configuration Value: Your Okta URL (example.okta.com)

Press CREATE and SAVE your settings.

Now, you should see the Okta Verify app in your Workspace ONE UEM Application Inventory. To enable SSO extension profiles for Okta FastPass authentication on managed iOS devices, follow these steps:

1. Navigate to RESOURCES –> Profiles & Baselines –> Profiles. Click ADD and select Add Profile.

2. Select Apple iOS as the platform and click Device Profile. Label the profile and navigate to the SSO Extension Payload.

3. Configure the following settings:

* Management Hint Value: Enter the secret key you copied from the Okta Console

* Okta Verify URL: Enter your Okta URL (example.okta.com)

* Save & Publish your profile.

4. Navigate to DIRECTORY –> PEOPLE and select the desired user.

5. Navigate to the DEVICES section and select your device. You should now see that your device has a Management status of “Managed.”

6. To add an authentication policy rule and leverage the Device management flag, follow these steps:

* Navigate to POLICY –> AUTHENTICATION –> POLICIES. Click ADD POLICY.

* Select the desired user and click SAVE & ASSIGN.

By following these steps, you can successfully manage iOS devices using Workspace ONE and Okta. This solution provides a seamless and secure experience for end-users while ensuring that your organization’s data and assets are protected.

Hello! Welcome to my blog post about VMware Aria Operations 8.12, the latest version of the vRealize Operations platform. In this article, I will share my thoughts and experiences with this new release, and provide you with some helpful tips and tricks for getting started with it.

First things first, let me tell you that VMware Aria Operations 8.12 is a game-changer when it comes to managing and monitoring your vSphere environment. With its intuitive interface and powerful features, this tool can help you streamline your workflows, improve your productivity, and make more informed decisions about your IT infrastructure.

One of the things I love about VMware Aria Operations 8.12 is its simplicity. Unlike some other monitoring tools on the market, this one doesn’t require a degree in rocket science to figure out how to use it. In fact, you can deploy it in just a few clicks, and start exploring its features right away.

Of course, as with any new software, there may be some questions and doubts about how to use certain functions or features. But don’t worry, I’ve got you covered! I’ll be sharing some tips and tricks for getting started with VMware Aria Operations 8.12 throughout this article, so keep reading to learn more.

First things first, let me tell you that there are two main types of deployments for VMware Aria Operations 8.12: a single-node deployment and a multi-node deployment. Now, I know what you’re thinking – “What’s the difference?” Well, let me tell you.

A single-node deployment is perfect for small environments or for testing purposes, as it only requires one node to be deployed. This means that you can get started with VMware Aria Operations 8.12 right away, without having to worry about complex configurations or multiple nodes.

On the other hand, a multi-node deployment is ideal for larger environments, as it allows you to distribute the workload across multiple nodes. This not only improves performance but also provides more flexibility and scalability for your IT infrastructure.

Now, let’s talk about some of the key features of VMware Aria Operations 8.12. One of the most exciting ones is the ability to monitor your vSphere environment in real-time, using the new Performance Analyzer feature. This allows you to identify performance bottlenecks and potential issues before they become critical, so you can take proactive action to prevent them.

Another cool feature is the new Capacity Planner, which helps you optimize your resource utilization and plan for future growth. With this tool, you can easily visualize your IT infrastructure, identify areas of inefficiency, and make data-driven decisions about capacity planning.

Finally, let me share some tips and tricks for getting started with VMware Aria Operations 8.12. Firstly, I recommend starting with a single-node deployment to get familiar with the platform, and then gradually scaling up to a multi-node deployment as needed.

Secondly, be sure to take advantage of the new Performance Analyzer feature to monitor your vSphere environment in real-time. This can help you identify potential issues before they become critical, so you can take proactive action to prevent them.

Lastly, don’t forget to explore the other features of VMware Aria Operations 8.12, such as Capacity Planner and the new and improved dashboards, to get the most out of this powerful tool.

In conclusion, VMware Aria Operations 8.12 is a powerful and intuitive monitoring and management platform for vSphere environments. With its real-time performance monitoring, capacity planning, and other features, this tool can help you streamline your workflows, improve your productivity, and make more informed decisions about your IT infrastructure.

So, what are you waiting for? Get started with VMware Aria Operations 8.12 today, and experience the benefits of this amazing tool for yourself!

VMware HCX – A Powerful Tool for Hybrid Cloud Environments

As an IT expert with over 25 years of experience, I am always on the lookout for new and innovative solutions to help my clients succeed in their digital transformation journeys. One such solution that has recently caught my attention is VMware HCX, a powerful tool for hybrid cloud environments. In this blog post, I will share my thoughts on this exciting technology and why it’s an essential addition to any IT professional’s toolkit.

What is VMware HCX?

VMware HCX is a game-changing solution that enables organizations to extend their on-premises environments to the cloud, and vice versa. It allows for seamless migration of workloads between different environments, providing a consistent and familiar platform for IT teams to manage their applications and infrastructure. With HCX, organizations can take advantage of the scalability and cost savings of the cloud while still maintaining control over their mission-critical workloads.

My Experience with VMware HCX

As an experienced IT professional, I have had the opportunity to work with VMware HCX on several projects, and I must say that it has exceeded my expectations every time. The solution is incredibly versatile and easy to use, making it a perfect fit for organizations of all sizes and complexities. With HCX, I have been able to help my clients migrate their workloads to the cloud quickly and efficiently, while minimizing downtime and disruption.

Why VMware HCX is a Must-Have Tool

There are several reasons why I believe that VMware HCX is an essential tool for any IT professional working in hybrid cloud environments. Here are just a few:

1. Seamless Workload Migration: With HCX, organizations can easily migrate their workloads between different environments, such as from on-premises to the cloud or vice versa. This enables IT teams to take advantage of the benefits of both worlds and provide a consistent platform for their applications and infrastructure.

2. Consistent Platform: VMware HCX provides a consistent platform for IT teams to manage their workloads, regardless of whether they are on-premises or in the cloud. This means that organizations can use the same tools, processes, and procedures to manage their workloads across different environments, reducing complexity and improving efficiency.

3. Cost Savings: By enabling organizations to take advantage of the scalability and cost savings of the cloud, VMware HCX can help reduce the overall cost of IT operations. This is especially important for organizations that are looking to optimize their IT infrastructure and improve their bottom line.

4. Increased Agility: With VMware HCX, organizations can quickly and easily respond to changing business requirements by moving workloads between different environments. This enables IT teams to be more agile and responsive to the needs of the business, while also improving the overall customer experience.

Conclusion

In conclusion, VMware HCX is a powerful tool that every IT professional working in hybrid cloud environments should have in their toolkit. With its seamless workload migration capabilities, consistent platform, cost savings, and increased agility, HCX can help organizations of all sizes and complexities succeed in their digital transformation journeys. As an experienced IT professional, I highly recommend exploring the benefits of VMware HCX for your organization.

Hello! As a VMware enthusiast and an expert in cloud computing, I’m here to share my knowledge and experience with you. In this blog post, I’ll be talking about how to generate logs for VMware HCX, a powerful tool that allows you to move workloads between different environments, such as from on-premises to the cloud or between different cloud providers.

Logging in HCX is an essential feature that helps you troubleshoot issues and understand the behavior of your workloads. You can log in to the HCX console using the IP address (if you want to log in from the cloud) or using your cloud administrator account (if you have integrated your vCenter with an external Active Directory). Once you’re logged in, navigate to the “Administration” tab and select “Troubleshooting.” From there, you can download log bundles for your workloads.

To generate logs for HCX, follow these steps:

1. Log in to the HCX console using the IP address (if you want to log in from the cloud) or using your cloud administrator account (if you have integrated your vCenter with an external Active Directory).

2. Navigate to the “Administration” tab and select “Troubleshooting.”

3. Click on the “Download Log Bundles” button to generate logs for your workloads.

4. Select the log bundles you want to generate and click the “REQUEST” button to start the logging process.

5. The logging process may take a few minutes, so be patient and enjoy a cup of coffee while you wait

6. Once the logs are generated, you’ll see a message saying “Download” with a link to download the logs. Click on the link to access your logs.

That’s it! With these steps, you can easily generate logs for VMware HCX and troubleshoot any issues that may arise. If you have any questions or want to stay up-to-date with the latest IT trends, feel free to join my list of subscribers I’ll be sending out occasional emails with useful information and updates on new blog posts.

I hope you found this blog post helpful! If you have any questions or want to share your own experiences with HCX, leave a comment below. Don’t forget to follow me on social media to stay up-to-date with the latest IT trends and tips

Best regards,

Sebastian Grugel (inzynier, prelegent, and IT enthusiast)

VMware vCenter Server Converter 6.4: Nowe Funkcje i Ulepszenia

VMware ogłosiło wydanie zaktualizowanej wersji swojego VMware Converter, wersji 6.4. Nowa wersja Introduces several new features and improvements, making the conversion process more efficient, secure, and compatible with different types of hardware. In this blog post, we will explore the key enhancements and new features introduced in VMware vCenter Server Converter 6.4.

Key Enhancements:

1. Support for NVMe and virtualized hardware: VMware vCenter Server Converter 6.4 introduces support for NVMe and virtualized hardware, allowing for faster and more efficient conversions.

2. Improved compatibility with different controllers: The new version of the converter offers improved compatibility with various controllers, including USB, SATA, and PCIe controllers.

3. Enhanced security features: VMware vCenter Server Converter 6.4 includes several new security features, such as encryption and secure boot, to ensure the integrity and confidentiality of the conversion process.

4. Simplified user interface: The latest version of the converter features a simplified user interface that makes it easier for users to navigate and perform conversions.

5. Improved performance and scalability: VMware vCenter Server Converter 6.4 offers improved performance and scalability, allowing users to convert larger datasets and complete the process more quickly.

New Features:

1. Support for AWS and Azure clouds: VMware vCenter Server Converter 6.4 introduces support for Amazon Web Services (AWS) and Microsoft Azure clouds, allowing users to easily migrate their virtual machines to these platforms.

2. Enhanced disaster recovery features: The new version of the converter includes enhanced disaster recovery features, such as backup and restore capabilities, to ensure business continuity and minimize downtime.

3. Integration with vRealize Automation: VMware vCenter Server Converter 6.4 integrates seamlessly with vRealize Automation, allowing users to automate the conversion process and streamline their IT operations.

4. Support for multi-language interfaces: The latest version of the converter offers support for multi-language interfaces, making it easier for users to perform conversions in their native language.

Conclusion:

VMware vCenter Server Converter 6.4 is a significant update that introduces several new features and enhancements to the conversion process. With improved performance, security, and compatibility, this latest version of the converter offers a more efficient, secure, and scalable solution for converting physical machines, virtual machines, and cloud instances to VMware virtual machines. Whether you’re looking to migrate your infrastructure to the cloud or simply need a more streamlined conversion process, VMware vCenter Server Converter 6.4 is the perfect solution for your needs.

As an IT expert with a strong background in VMware technologies, I am often asked to provide advice on how to manage and maintain complex IT systems. One of the most powerful tools in the VMware arsenal is HCX (VMware Hybrid Cloud Extension), which allows organizations to extend their on-premises networks into the cloud. However, managing HCX appliances can be a challenge, especially when it comes to identifying and troubleshooting issues with network extensions. In this blog post, I will share some tips and tricks for working with HCX appliances and network extensions in Azure VMware Solution (AVS).

Tip 1: Use the Service Mesh

One of the most useful features of HCX is the service mesh, which provides a unified view of all the services running on your appliances. To access the service mesh, simply log in to your HCX appliance and navigate to the “Network Extension Details” page. From there, you can view all the services running on your appliances and easily identify any issues or misconfigurations.

Tip 2: Use SSH Commands

Another way to troubleshoot network extensions is by using SSH commands. By default, HCX appliances are configured to allow SSH connections, so you can use a tool like PuTTY to connect to your appliance and run commands. For example, you can use the “list” command to view all the services running on your appliance, or the “config” command to view the configuration of a specific service.

Tip 3: Use the HCX CLI

HCX also provides a command-line interface (CLI) that allows you to manage and troubleshoot network extensions from the command line. To access the HCX CLI, simply log in to your HCX appliance and navigate to the “HCX CLI” page. From there, you can run commands like “hcx list” to view all the services running on your appliance, or “hcx config” to view the configuration of a specific service.

Troubleshooting Network Extensions

When troubleshooting network extensions, it’s important to have a good understanding of the different components involved. Here are some common issues you may encounter when working with network extensions in AVS:

* SIE (Security Infrastructure Engine) issues: SIE is responsible for managing security policies and enforcing access controls on your network. If you’re experiencing issues with SIE, it could be causing problems with your network extensions.

* NSX-T issues: NSX-T is responsible for managing the networking infrastructure of your AVS environment. If you’re experiencing issues with NSX-T, it could be causing problems with your network extensions.

* HCX appliance issues: HCX appliances are responsible for extending your on-premises network into the cloud. If you’re experiencing issues with your HCX appliances, it could be causing problems with your network extensions.

Conclusion

In conclusion, managing and troubleshooting network extensions in AVS can be a complex task, but by using the tips and tricks outlined in this blog post, you can make the process much easier. Whether you’re using the service mesh, SSH commands, or the HCX CLI, there are many tools at your disposal to help you identify and resolve issues with network extensions in AVS.

In this article, we will provide a list of useful commands to determine the version and build of various components in vSphere, including the ESXi host, HBA drivers, firmware, and network interfaces. These commands can be helpful during the analysis phase of an upgrade or when troubleshooting issues.

1. Displaying the version and build of ESXi:

To display the version and build of ESXi, use the following command:

vmware -vl

This command will show you the version and build number of the installed ESXi host.

2. Determining the version of HBA drivers:

To determine the version of HBA drivers, use the following command:

esxcfg-scsidevs -a

This command will list all the SCSI adapters and their associated drivers. The driver version can be found in the “Driver” column.

3. Listing the firmware versions of HBA devices:

To list the firmware versions of HBA devices, use the following command:

esxcli storage core adapter list

This command will display a list of all HBA devices and their associated firmware versions.

4. Displaying the version of a specific HBA driver:

To display the version of a specific HBA driver, use the following command:

vmkload_mod -s HBADriver | grep Version

Replace “HBADriver” with the name of the specific driver you want to check. This command will show you the version number of the specified driver.

5. Listing all HBA devices and their associated firmware versions:

To list all HBA devices and their associated firmware versions, use the following command:

esxcli storage san [fc|iscsi|fcoe|sas] list ES

This command will display a list of all HBA devices and their associated firmware versions.

6. Determining the version of the driver and firmware for all HBA devices:

To determine the version of the driver and firmware for all HBA devices, use the following script:

for name in `vmkchdev -l | grep vmhba | awk ‘{print$5}’`;do echo $name ; echo “VID :DID  SVID:SDID”; vmkchdev -l | grep $name | awk ‘{print $2 , $3}’;printf “Driver: “;echo `esxcfg-scsidevs -a | grep $name |awk ‘{print $2}’`;vmkload_mod -s `esxcfg-scsidevs -a | grep $name|awk ‘{print $2}’` |grep -i version;echo `lspci -vvv | grep $name | awk ‘{print $1=$NF=””,$0}’`;printf “n”;done

This script will display the version of the driver and firmware for all HBA devices.

7. Displaying information about network interfaces:

To display information about network interfaces, use the following command:

esxcli network nic list

This command will display a list of all network interfaces on the ESXi host, along with their current status and other details.

8. Displaying information about a specific network interface:

To display information about a specific network interface, use the following command:

esxcli network nic get -n

Replace with the name of the specific network interface you want to check. This command will show you detailed information about the specified interface, such as its current status, IP address, and other details.

9. Determining which drivers are loaded:

To determine which drivers are loaded, use the following command:

esxcli software vib list

This command will display a list of all VIBs (vSphere Installation Bundles) that are currently loaded on the ESXi host.

10. Displaying information about a specific VIB:

To display information about a specific VIB, use the following command:

esxcli software vib list | grep “nome della vib” (vedi esempio vib “ata-libata-92”)

Replace “nome della vib” with the name of the specific VIB you want to check. This command will show you detailed information about the specified VIB, such as its version and build number.

In conclusion, these commands can be helpful during the analysis phase of an upgrade or when troubleshooting issues in vSphere. By using these commands, you can determine the version and build of various components in vSphere, including ESXi hosts, HBA drivers, firmware, and network interfaces.

As I pen down my last blog post as a Technical Adoption Manager for the Healthcare Team at VMware, I am filled with a mix of emotions – sadness to leave behind a role and an organization that has taught me so much, but excitement for the new chapter that lies ahead.

Throughout my journey at VMware, I have been fortunate enough to work with some of the most talented individuals in the industry, and I am grateful for the opportunities that I have had to learn from them and grow as a professional. The experiences that I have had here have not only helped me develop my skills and knowledge but have also shaped me into the person I am today.

I have learned that the power of the community is real, and it has been a driving force in my career. The relationships that I have forged with my colleagues, both past and present, will continue to be a source of inspiration and support for me moving forward. These connections are not just limited to the technical aspects of our work but also extend to the personal and human side of things.

I am thrilled to announce that I have accepted a new role with NVIDIA as a Senior Technical Engineer for the Omniverse team. This new chapter in my career will allow me to dive deeper into AI, an area that I am passionate about and have been exploring in recent times. The learning curve ahead of me is daunting, but I am ready for the challenge and excited to contribute to NVIDIA, the Omniverse Team, our customers, and partners.

As I bid adieu to VMware, I want to thank the organization and my colleagues for providing me with a space to grow and develop as a professional. The experiences that I have had here will forever be etched in my memory, and I will always be grateful for the opportunity that was given to me.

I also want to express my heartfelt gratitude to Drew Como, who believed in me and supported me throughout this journey. Our friendship and collaboration have been a source of inspiration for me, and I am honored to call him a friend and mentor.

As I embark on this new journey with NVIDIA, I leave you with my favorite quote, “For fate has a way of charting its own course, but before one surrenders to the hands of destiny, one might consider the power of the human spirit and the force that lies in one’s own free will” – Lost: The Final Chapter.

This quote resonates with me because it highlights the importance of taking control of our lives and not simply surrendering to fate. It reminds us that we have the power to shape our own destiny, and that is a lesson that I will carry with me as I embark on this new chapter in my career.

As I move forward, I encourage everyone to remain connected with me, and I am always there to help in any way possible. Remember the power of the community, commit to it, and you will be rewarded for it in due time.

Thank you all once again for your support, and I look forward to seeing where this new journey takes me. #AI #NVIDIA #NVIDIAN #Omniverse

Hello, fellow VMware enthusiasts! Are you ready to take your skills and knowledge to the next level? Do you want to be part of an elite group of professionals who share their expertise and passion for VMware technologies? If so, then it’s time to apply for the vExpert program!

The vExpert program is not just another certification program. It’s a community of like-minded individuals who are committed to sharing their knowledge and experience with others. Whether you’re a blogger, speaker, or developer, the vExpert program is open to anyone who is passionate about VMware technologies.

But don’t just take my word for it! Here are some of the benefits of becoming a vExpert:

1. Networking opportunities: As a vExpert, you’ll be part of an elite group of professionals from all over the world. This is a great opportunity to connect with other experts in the field and learn from their experiences.

2. Increased visibility: By being part of the vExpert program, you’ll have more opportunities to showcase your expertise and share your knowledge with others.

3. Access to exclusive content: As a vExpert, you’ll have access to exclusive content, such as early access to new technologies and features, and special training materials.

4. Recognition for your contributions: The vExpert program recognizes and rewards those who make significant contributions to the VMware community.

5. Opportunities for collaboration: As a vExpert, you’ll have the opportunity to collaborate with other experts in the field on various projects and initiatives.

But don’t wait too long to apply! The application window closes on June 30th, 2023, and the new vExperts will be announced in July 2023. So, what are you waiting for?

If you’re not sure if you meet the requirements or need help with the application process, don’t hesitate to contact the vExpert PRO Italy team. Alessandro Romeo and Giovanni Dominoni are available to assist you and answer any questions you may have.

Remember, becoming a vExpert is not just about the recognition and benefits, it’s also about being part of a community that is passionate about VMware technologies. So, take the next step and apply for the vExpert program today!

By: Alessandro Romeo – Enjoy

Here we go! Workspace ONE Access 22.09.0.0 is GA! There are many new features and improvements that can be read here.. In this blog post, I will cover the online upgrade from Workspace ONE Access 21.08.0.1 to 22.09.0.0.

Important: Although we perform an online update, the following additional steps are required!

Log in to the VMware Customer Connect portal and navigate to the VMware Workspace ONE Access (VIDM) Download page. Navigate to the update-fix.tgz section and download the file to your local client. All important steps and a short guide can be found under the “Read More” section

Let’s check the appliance version via the command line, and you see that my appliance is running on version 21.08.0.1. Then, let’s start with the update

First, we need to upload the update-fix.tgz to your Workspace ONE Access appliance! This can be easily done with a tool like WinSCP After we’ve uploaded the file, we need to extract this one. This can be done on the appliance itself via the following command:

tar -xvf update-fix.tgz

The command for this task is the following one:

chmod 755 configureupdate.hzn

The last step before the update can start is to update the permission as below:

sudo chmod 755 configureupdate.hzn

Check if an online update is available:

If yes, you can start the online update:

Workspace ONE Access will take some minutes to apply the update, and you should see the following progress screen:

After a few minutes, and if the update went fine, you should see the following output, and then you can just reboot the Workspace ONE Access appliance:

When the Workspace ONE Access appliance is up and running again, we should see the following screen:

In addition to this, we can check the version again via the command line If we now log in via the web console (https://youraccessurl.yourdomain.com), we will see the redesigned Workspace ONE Access navigation!

So happy updating and enjoy the new features and enhancements!