VMware Browser Application Settings and Policies

The Settings and Policies section of the Workspace ONE UEM console contains settings that can control security, behaviors, and the data retrieval of specific applications. The settings are sometimes called SDK settings because they run on the AirWatch SDK framework.

You can apply these SDK features to applications built with the AirWatch SDK, to supported Workspace ONE UEM applications, and to applications wrapped by the AirWatch App Wrapping engine. Same features can be applied in both the places as the AirWatch SDK framework processes the functionality.

VMware Browser relay on these Setting and Policies, which can be based on two types of SDK Settings:

  • Default settings work well across organization groups, applying to large numbers of devices.
  • Custom settings work with individual devices or for small numbers of devices with applications that require special mobile application management (MAM) features.

For this exercise we will make changes to the default settings.

1. Configure VMware Browser

Browser Settings
  1. Click on Apps
  2. Click on Browser
  3. Select Override for Current Setting
  4. Scroll down to find the Mode Section

1.1. Configure Browser Mode

  1. Click Disable for Kiosk Mode
  2. Enter http://intranet.corp.local/intranet for Home Page URL
  3. Click Allow for Selection Mode
  4. Enter *.corp.local and in a new line *.airwlab.com for Allowed Sites URLS
  5. Click Save

2. Configure Security Policies

Integrated Authentication
  1. Click Settings and Policies
  2. Click Security Policies
  3. Select Override for Current Setting
  4. Click Enabled for Integrated Authentication
  5. Click Enabled for Use Certificate
  6. Select Defined Certificate Authority for Credential Source
  7. Select CONTROLCENTER CA for Certificate Authority
  8. Select MobileUserCertificate for Certificate Template
  9. Enter * for Allowed Sites
  10. Scroll down up to the end of the page

In these 9 steps you allowing the user credentials to be passed on to allowed sites for integrate authentication, in this case the user credentials to be used is the User Certificate.

2.1. App Tunnel Mode Settings

App Tunnel Mode
  1. Click Enabled for AirWatch App Tunnel
  2. Select VMware Tunnel - Proxy for App Tunnel Mode
  3. Enter *.corp.local and in a new line *uag.airwlab.com*
  4. Click Save

In this step you define how VMware Browser will redirect the traffics to access internal resources, in other words, any request from VMware Browser that matches the App Tunnel URLs will be redirect through Tunnel Proxy.