Upgrading to VMware Workspace ONE Access 22.09 (Photon Linux)
To upgrade to Workspace ONE Access 22.09, the current version must be 21.08.x. Versions prior to 21.08.x must be upgraded to 21.08.x first, then upgraded from 21.08.x to 22.09.
During the upgrade, all services are stopped; plan the upgrade with the expected downtime in mind.
If you are upgrading from version 21.08.0.1, before you begin the upgrade you must download the update-fix.tgz package from the Workspace ONE Access 22.09 download page and replace the /usr/local/horizon/update/configureupdate.hzn file with the new configureupdate.hzn file from the package. See the instructions in the package for detailed information.
Microsoft SQL server 2014 must be updated with the Microsoft SQL patch to support TLS 1.2 before you upgrade the Workspace ONE Access service appliance.
See the Upgrading to Workspace ONE Access 22.09 guide in the Workspace ONE Access documentation center for more information.
Upgrading to Workspace ONE Access Connector 22.09 (Windows)
You can upgrade Workspace ONE Access connector versions 22.05, 21.08.x, 20.10.x, and 20.01.x to version 22.09.
See the Upgrading to Workspace ONE Access Connector 22.09 guide for information.
Migrating to Workspace ONE Access Connector 22.09 (Windows)
From Workspace ONE Access connector version 19.03.x, a migration path to version 22.09 is available. The process includes installing new 22.09 connectors and migrating your existing directories and virtual apps collections to the new connectors. Migration is a one-time process, and you must migrate directories and virtual apps collections together.
After the migration is complete, you no longer need the Integration Broker for Citrix integrations. The required functionality is now part of the Virtual App service component of the Workspace ONE Access connector.
All legacy connectors must be version 19.03.x before you can migrate to version 22.09.
To migrate ThinApp virtual apps collections, you must first migrate from the Linux 2018.8.1.0 connector to the Windows 19.03.0.1 connector. Then, migrate from version 19.03.0.1 to version 22.09.
See the Migrating to Workspace ONE Access Connector 22.09 guide for information.
Certificate Requirement for Horizon and Horizon Cloud Virtual Apps Collections
Ensure that the Horizon Connection Servers, or the Horizon Cloud service's underlying Horizon servers, have valid certificates signed by a trusted Certificate Authority (CA). If the Horizon servers have self-signed certificates, you must upload the certificate chain to the Workspace ONE Access connector instances on which the Virtual App service is installed to establish trust between the connectors and the Horizon servers. This is a new requirement in Workspace ONE Access connector beginning with version 21.08. You upload the certificates using the connector installer. See Installing Workspace ONE Access Connector 22.09 for more information.
Requirements for RSA SecurID Authentication Method
The RSA SecurID integration has the following new requirements beginning with Workspace ONE Access connector version 21.08:
In the RSA Security console, the Workspace ONE Access connector must be added as an authentication agent using the fully qualified domain name (FQDN), for example, connectorserver.example.com. If you have already added the connector as an authentication agent using the NetBIOS name instead of the FQDN, add another entry using the FQDN. Leave the IP address field empty for the new entry. Do not delete the old entry.
If you have deployed multiple instances of the RSA Authentication Manager server, you must configure them behind a load balancer. See Workspace ONE Access Requirements for RSA SecurID Load Balancer for more information.