EUCZero Trust Journey 2021 Day 4 - Application TrustApplication version control with Workspace one UEM and Intelligence

Application version control with Workspace one UEM and Intelligence

Introduction

In this lab we are going to go over the tools Workspace ONE UEM and Workspace ONE Intelligence give us for visibility, control of application versioning and their use on scenarios where certain application versions have been deemed not secure due to unpatched vulnerabilities.

Whilst Workspace ONE Intelligence doesn't have an integration for app vulnerabilities, it's also important to mention CVE does have information about application vulnerabilities.

The remediation actions described here apply with no regard to where you get the vulnerability information from (magazines, websites, news outlets, app vendor, anti virus vendor).

Part 1: Adding an application using Workspace ONE UEM

We are going to add an application to the Workspace ONE UEM application catalog, our objective would be to update systems with less secure, possibly more vulnerable versions of the application.

  1. From your Laptop, open your browser:
    • In the Address Bar type https://cn-livefire.awmdm.com
    • In the Username field type in the Username you got in your Welcome email.
    • Select Next.

 

  1. Finish authenticating into the Workspace ONE Saas based console:
    • In the Password field, type  VMware1!
    • Select Log in
  1. In the Workspace ONE UEM Console
    • In the left Navigation pane,
      • Select  APPS & BOOKS > Applications > Native
    • Select the dropdown next to ADD
      • Select Application File
  1. In the Add Application window:
    • Next to Organizational Group ID: Leave default
    • Next to Application file select UPLOAD
  1. In the Add window
    • Choose the Link radio button
    • In the Link field Copy and Paste
      • https://get.videolan.org/vlc/3.0.16/win64/vlc-3.0.16-win64.msi
    • Select SAVE
  1. In the Add application window,
    • Select CONTINUE
  1. On the Edit Application - VLC media player 3.0xx
    • Under Details
      • Next to Supported Processor Architecture
        • Select 64-bit
    • Select SAVE & ASSIGN
  1. In the  VLC media player 3.0.16 (64-bit) - Assignment  window add the following information
    • Name: VLC Distribution
    • Description : Update
    • Assignment Groups: ALL Devices(YOUR ORG)
    • Deployment Begins : Choose a time that is 1 day behind  your current time
    • App Delivery Method: On Demand (we will trigger installations from intelligence)
    • Allow User Install Deferral: leave in Default position
    • Display in App Catalog: switch to NO (grey) position
    • Select CREATE
  1. On the VLC media player 3.0.16(64-bit) - Assignment window
    • Select SAVE
  1. In the VLC media player 3.0.16 (64-bit) - Preview Assigned Devices window,
    • Make sure your Windows machines are included
    • In the bottom right, select PUBLISH
  1. Under Apps & Books
    • Select Native
    • Select the VLC media player 3.0.16(64-bit) application
      • Make sure you select the sub version of VLC media player
  1. In Workspace ONE UEM URL address bar
    • In the URL, capture the number after the "/internal/" section.
      • We will use this Application ID  in a later exercise.
  1. In the Workspace ONE UEM console
    • Select Devices > List View
    • Under List View, select your Windows 10 desktop used on Day 1
  1. In the Workspace ONE UEM address bar
    • Note the Device ID next to Summary
      • In this example the number happens to be 439

Part 2: Configure Workspace ONE Intelligence

In this part we will create a dashboard displaying the information about the application version distribution, and an automation to update the software version which have been deemed vulnerable.

  1. Switch to your Workspace ONE Intelligence console:
    • In the top right-corner of your Workspace ONE UEM Console,
      • select the MY SERVICES Menu
    • Select Workspace ONE Intelligence
  1. In the Workspace ONE Intelligence console
    1. In the Menu bar,
      • select Dashboards
    2. Under MY Dashboards,
      • select +ADD
  1. In the Add Dashboard window
    1. In the Name your dashboard area,
      • Type Application Version Control
    2. In the top right-hand corner,
      • Select SAVE
  1. In the My Dashboards > Application Version Control window
    • Select ADD WIDGET

 

  1. In the My Dashboards > Application Version Control window
    • From the dropdown, select Custom Widget
  1.  In the Add Widget window
    • Select the Category dropdown menu
    • Navigate to Workspace ONE UEM  > Apps
  1.  In the Add Widget window enter the following data:
    1. In the Blank name field :
      • type VLC Versions
    2. Under Data Visualization section
      • ensure SNAPSHOT is selected
    3. Under Chart type section,
      • select DONUT
    4. Next to Measure
      • In the first field , ensure Count is selected
      • In the second field , search for value App Identifier
    5. Next to the Group by field :
      • From the dropdown select Apps > App Version
    6. Scroll down to the Filter section
  1. In the Add Widget window > Filter Area
    • Under Empty Rule,
      • In the second line, in Search, select the dropdown menu,
        • select Apps > App Identifier
      • In the same line, second column, ensure Includes is selected.
    • In the same line, third column,
      • Start typing VLC and select VLC media player
      • In the top-right corner, select SAVE
  1. In the My Dashboards window
    • Select VIEW
  1. Under My Dashboards/Application version control
    • Select AUTOMATE
  1. In the Add Workflow window
    • In the Name your workflow area,
      • type VLC UPDATE
    • At the end of your first Filter,
      • Select the PLUS SIGN to add another filter
  1. In the Filter (If) area second row:
    1. In the first column,
      • from the dropdown, select Apps > App Version
    2. In the second column,
      • from the dropdown, select Starts With
    3. In the 3rd column,
      • type 2
    4. Under the Action (Then) section
      • select the "+" sign
  1. Under Available Connectors
    • Select the Workspace ONE UEM connector
  1. Under Available Connectors
    • Scroll down and select Install Internal Application
  1. In the Action (Then) window
    • Next to Device ID
      • enter your custom Device ID
        • In this example the number is 439
    • Under Path Variables,
      • Ensure the radio button next to " Enter custom value " is selected
    • Next to Application ID
      • enter your custom Application ID
        • In this example the number is 285
  1. In the Add Workflow window
    • In the bottom right corner
      • Move the Toggle next to Enable workflow  (GREEN)
    • In the top right corner
      • Select SAVE
    • In Save Workflow window
      • Next to One-time Manual Run
        • Move the toggle right
        • Select SAVE & RUN
  1. You should now see your newly created automation.
    • leave this window open for later use.

Part 3: Verifying automation functionality

In this part we will see in action the automation you just created, from the virtual machine and the Workspace ONE Intelligence dashboard.

  1.  From your Controlcenter server desktop:
    • Open the Remote Desktops folder
    • Double click the W10Client01.RDP shortcut

 

  1. In the Windows Security window
    • Enter VMware1! in the password field
    • Select OK
  1. On your W10Client01
    •  In the notification area, right click the Workspace ONE hub App
    • Select Sync
      • After a few minutes you should see a notice that VLC Media player is installing
  1. Switch back to Workspace ONE Intelligence
    • From the title tabs, select Automations,
    • Under VLC UPDATE  select VIEW
  1. Under the Workflows > VLC UPDATE page,
    • Select the Activity tab
  1.  In the Workflows > VLC Update window
    • Select the  Activity tab,
      • Check and refresh the Activity window until you see an install action show up as COMPLETED
  1. Switch back to your Windows 10 vm remote desktop session:
    • From your desktop, select the VLC media player shortcut
      • You will notice, at first launch, configuration completes
    • In the VLC window go to Help > About
  1. In the VLC About window
    • Observe the version number, It should match the screenshot,
    • If It does your VLC Media player application has been updated successfully.

0 Comments

Add your comment

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.