Vulnerability Management

In this guide, I am going to walk through setup of the Vulnerability Management solution for Windows as part of Workspace ONE Intelligence. The formal VMware documentation for this solution can be found here. As part of this solution, the Windows devices in your Workspace ONE environment can be analyzed for vulnerabilities from the Common Vulnerability Scoring System (CVSS) due to a device's lack of/missing Windows Update.

Getting Started with Vulnerability Management

To get started, launch WS1 Intelligence (either from the Workspace ONE Cloud Console or through WS1 UEM, the latter pictured below)

2. In Intelligence, go to the Marketplace tab, under solutions click on Vulnerability Management, and click Get Started.

3. Click start to integrate Workspace ONE UEM as a data source. Most commonly, this will already be done and you can click Start, it will display it is already connected, and you can click next.

4. Next, click on start to input the SLA's for vulnerability patching. In this example, I am going to leave the defaults.

5. Finally, click on "View Dashboard" to go to the Vulnerability dashboard now that the configuration is completed.

6. In this example, I will be looking at Windows vulnerabilities

7. On this page you can see the number of devices that fall vulnerable to particular CVSS vulnerabilities, and further down on the page you can see the particular CVE’s, what windows updates fall under that CVE, and the devices in particular. (note, I only have a couple devices enrolled into UEM at this point, given the low numbers)

8. Clicking on the CVE number itself will give you information on patching, SLA, and links to the NIST article and Microsoft KB

Vulnerability Management

Getting Started with Vulnerability Management

Although I strive for accuracy, this site is not official documentation. Use at your own risk. Opinions/documentation on this site are my own and do not reflect that of Omnissa.