Upgrading your AirWatch environment to Workspace ONE with VMware Identity Manager enables the following features.

  • A unified Workspace ONE application catalog that replaces the existing AirWatch catalog. This catalog includes a new interface, faster performance, and enhanced user management.

  • Workspace ONE puts applications first. When users log in for the first time, they see all their applications. Some of the applications are available and others are locked. When users access a locked application, AirWatch enrollment kicks off. When the enrollment is complete, users land back at the application to begin using that resource.

  • The option to bring your own device (BYOD) can be easier to implement with the enhanced container support for unmanaged devices. Access and single sign-on to approved Web and SDK-enabled first and third-party native applications is supported.

For information about how to configure these features for Workspace ONE, see the AirWatch Mobile Application Management guide.

Using the VMware Identity Manager Administration Console

After you install the VMware Identity Manager component with AirWatch and configure the Getting Started wizard to integrate the VMware Identity Manager service with AirWatch, the unified catalog is enabled. Users can sign in to their Workspace ONE application.

You can use the admin console to customize the branding for the Workspace ONE sign-in and user portal pages. You can also manage VMware Identity Manager configuration with AirWatch.

The tasks in the admin console are organized by tabs.




In the Home tab, you can see the users that are synced from AirWatch to the VMware Identity Manager service to access Workspace ONE.

You can set up your SMTP settings for email notifications.

The System Diagnostics page displays a detailed overview of the health of the VMware Identity Manager service in your environment. You can also see the certificates expiration date.

Auto Discovery

Register your email domain to use the auto-discovery service to make it easier for users to access their applications portal using Workspace ONE. End users can enter their email address instead of the organization's URL.

Custom Branding

In the Custom Branding > Login Branding page, you can customize the appearance of the Workspace ONE sign-in screen. You can also add you company logo and name to display in the catalog.

In the User Portal Branding page, you can customize the end-user Web portal.

Identity & Access Management

The AirWatch Cloud Connector password adapter is set up during the initial configuration through the Getting Started wizard. In the Identity & Access Management tab, you can integrate third-party identity providers. The default user attributes used to sync users from Active Directory are listed. In the Authentication Method section, you can enable just-in-time sync from the AirWatch Cloud Connector.


The Policies tab lists the default access policy and any other Web application access policies you created.

Signing in to the Administration Console

After VMware Identity Manager is integrated with AirWatch, you sign in to the identity manager administration console as the local system administrator. The local administrator is created in the service when you installed the VMware Identity Manager service. Use the password you entered when you created the VMware admin user activation credentials during the AirWatch installation.

To access the administrator console, go to the VMware Identity Manager server hostname that was configured during the AirWatch installation. Example of the URL, <myco.example.com>:6443, where the host name is the external host name and port 6443 corresponds to the port entered during the install.

Select the System Domain and enter the administrator user name and password. The user name is admin.