VMware Workspace ONE Community
tal2020
Contributor
Contributor

Device compliance checks when accessing apps via Chrome

Hello,

We're considering using Workspace ONE to provide an SSO experience to employees using personal Windows 10 devices and Chrome as their browser.

We want to make sure an employee can only access corporate apps if their device is marked as compliant in Workspace ONE UEM (e.g. if they turned off the Anti Virus, we want to make sure they cannot access corporate apps via the app portal).

  • Can that work? can employees keep using their Chrome browser to access corporate apps while we still enforce their device is compliant?
  • How does it work? how does Workspace ONE know that the device they're using is compliant if they're using Chrome assuming Chrome isn't aware of Workspace ONE?
  • Do users need to install any Chrome extension to make this work?
  • Will it work with other browsers too? (e.g. Firefox)

Any details or insight here would be much appreciated.

Thanks,

Tal

Labels (2)
Reply
0 Kudos
1 Reply
andrewprice
VMware Employee
VMware Employee

Hey Tal,

There are a few things hereto consider for your use case.

If you're looking to utilise compliance the device would need to be under management to be able to check this. In this case, the device will also have the Intelligent Hub installed.

You could also leverage conditional access policies in Workspace One Access to provide different authentication methods into Web Based applications based om device compliance status. This would also work across other browsers if needed.

This link may help further with conditional access - https://techzone.vmware.com/securing-saas-applications-conditional-access

Thanks

Andrew

Reply
0 Kudos