VMware Workspace ONE UEM™ Powered by AirWatch Release Notes provide information on the new features and improvements in each release. This page includes a summary of the new features introduced in 2111 and Resolved Issues and Known Issues.

When can I expect the latest version?

We strive to deliver high-quality products, and to ensure quality and seamless transitions, we roll out our products in phases. Each rollout may take up to four weeks to accomplish and is delivered in the following phases:

  • Phase 1: Demo and UATs

  • Phase 2: Shared SaaS environments

  • Phase 3: Dedicated latest environments

Once our phased rollout is complete, we will announce general availability for on-premises and managed hosted customers. For more information, see the KB article.

Getting Ready for Apple Fall 2021 Releases

Learn more about the upcoming Fall 2021 releases for Apple. See Getting Ready for Apple Fall 2021 Releases for more information.

Upcoming Features and Tech Previews

Learn about the features and capabilities of Workspace ONE UEM that are in technical preview or will be released soon. Technical preview features are not fully tested, and some functionality might not work as expected. However, these previews help Workspace ONE UEM improve current functionality and develop future enhancements.

  • Workspace ONE Drop Ship Provisioning (Online) offers self-registration of Windows devices as a technical preview.

    As an alternative to the current Drop Ship Provisioning (Online) process where you work with your OEM to register your Windows devices, you can use this process to register and provision your devices yourself. This process is also helpful to test the provisioning of a few devices before you send your provisioning orders to your OEM. For self-registration, you work on the Windows device and in the Workspace ONE UEM console. You stage Windows devices with the Drop Ship Provisioning Generic PPKG and register your devices and configure their profiles in the console. For details about this technical preview, access Technical Preview: Self-Registration for Workspace ONE Drop Ship Provisioning (Online).

New Features in this Release


  • Stay informed with our brand new console banner notifications.

    With the new console banner notifications that appear across the top of the UEM console, you can stay updated on maintenance issues, upgrades, outages, and product announcements. For more information, see Console Notifications.

  • Use Launcher devices without going through the entire authentication process.

    You can now designate a second Launcher profile as a Guest Session profile and enable users to skip directory authentication and quickly access installed applications. For more information, see VMware Workspace ONE Launcher.

  • Keep your workflow going with the improved Bulk Delete command.

    Previously when you issued a Bulk Delete command that triggered Wipe Protection, the Bulk Delete command would end and you had to manually delete the devices. We’ve improved the workflow so that Bulk Delete now resumes after resolving Wipe Protection. For more information, see Device List View.

  • Avoid abandoning devices and child OGs with our new OG deletion logic.

    Now when you attempt to delete an organization group in the UEM console, the system checks for child OGs and devices in the OG you are trying to delete. If it finds a child OG or a device anywhere in the OG tree, the deletion is cancelled. For more information, see Delete an Organization Group.

  • Add your operating system language to your DropShip Provisioning (Offline) encrypted PPKG packages.

    You can now add your operating system language when you configure encrypted packages for DropShip Provisioning (Offline). Enter a Microsoft approved BCP 47 Code in the Custom OS Language field. This setting ensures that your encrypted packages run in the correct date and time format. Find this new field in Devices > Lifecycle > Staging > Windows. Make a new provisioning package or edit an existing one. Select Encrypted PPKG and go to Configurations > OOBE Configuration > Operating System Language > Other. For more information, see Working with Provisioning Packages.

  • Discontinue use of API

    The API "/devices/{id}/sendmessage" was functional till Workspace ONE UEM console version 2010. From Workspace ONE UEM version 2111, we have now fully deprecated the API. Please visit https://<API Server URL>/API/help for more about the API information.


  • We've made a few enhancements to the Freestyle Orchestrator.

    Freestyle has been promoted from technical preview to limited availability for SaaS customers. The following improvements to Freestyle Orchestrator have been made in this release.

    • We have added a fast lane delivery of workflows to small device fleets. That is, workflows being deployed to <2000 devices, the devices will be notified immediately upon publishing.

    • Workflows in Windows can be retrieved by devices during device check-in even when no user is logged in. This behavior requires Windows Hub 22.01.

    • Workflow statuses will now be reported more frequently by devices to increase visibility to administrators, and this requires Windows Hub 22.01.

    • We have made changes to the Hub catalog and assignment statuses behavior when an app is assigned both from workflows and directly.

    • Additionally, admins can now add a change log to workflows and force them to execute.


  • We’ve made performance enhancements to improve batching of Android public application deployment.

    These improvements will benefit larger app deployments, whether automated or on-demand.

  • We’ve made check-in check-out more flexible by introducing guest sessions for Launcher

    You can now designate a second Launcher profile as a Guest Session profile and enable users to skip directory authentication and quickly access installed applications. For more information, see VMware Workspace ONE Launcher.

  • Want to block enrollment for non Android Enterprise devices?

    If "Always Use Android" is enabled and device is not certified for Android Enterprise use, enrollment is blocked and user will see a "Android Enterprise enrollment is required to continue for this device" message on their device.

    For more information, see Android Device Enrollment.

  • Want to customize Launcher Settings without using Custom XML? We have a solution for you.

    We've simplified Workspace ONE Launcher configuration by adding UI controls for 14 features that previously required Custom XML. You can see these features implemented with the new data-driven user interface for Android. The Launcher profile configuration now includes the following Advanced Launcher Settings:

    • Use Legacy Launcher APIs

    • Default to Usage Access

    • Require Write Settings Permission

    • Enable App Data/Cache Clearing

    • Enable Admin Mode on CICO Screen

    • Allowlist Activities on Check-in Check-out Screen

    • Allowlist Specific Android Activities

    • Add Custom Device Settings

    • Customize Single App Floating Button

    • Add Launcher Branding

    • Enable Speed Lockdown

    • Set Launcher as Default after Reboot

    • Remove Floating Home Button Setting

    • Allow Popup Notifications

    For more information, see VMware Workspace ONE Launcher Profile Configuration.


  • Silently install your required App Store apps

    With iOS 15.1, you can set any single App Store app as a required app during enrollment. When installing the app using Workspace One UEM or Workspace ONE Intelligent Hub, the app deploys silently, even on unsupervised devices. For more information, see Configure Organization Settings.

  • Help users enroll their personal devices more easily with Account Driven User Enrollment.

    On iOS 15 and later devices, users can sign in with their Managed Apple ID directly in the iOS Settings app instead of navigating to a URL in Safari. This allows users to focus on setting up their enterprise account rather than switching between screens and multiple prompts. For more information, see Enroll an iOS Device Using Account Driven User Enrollment.


  • We’ve deactivated the Scripts functionality for BYO devices.

    To preserve end-user privacy, macOS and Windows devices with Employee Owned ownership are now excluded from Scripts assignments.

Chrome OS

  • We've added support for SCEP Certificate Deployment

    rom a Chrome User or Device Network (or Credentials) profile, you can now choose a SCEP certificate authority and template when adding a template-based certificate. For more information, see Supported Certificate Authorities

Resolved Issues

2111 Resolved Issues

  • RUGG-10851: Provisioning/PoliciesViewDevices grid ‘Last Seen’ shows time 5 hours behind expected Admin time zone.

  • AAPP-13759: VPP licenses are not getting disassociated.

  • AMST-34890: Disabling HardwareDeviceIdentifierForWindowsFeatureFlag is still merging device records.

  • AGGL-11276: Params to clear accounts is not sent on checkin from device details/auto logout.

  • AGGL-11276: Params to clear accounts is not sent on checkin from device details/auto logout.

  • AAPP-12614: Cannot install unmanaged internal books from Book Catalog on iOS devices.

  • AAPP-12248: iOS 15 Required MDM App.

  • AAPP-12223: Apple tvOS installapp request will fail with“12008 The MDM request is invalid” in certain scenario.

  • UM-1871: On UEM versions 2105 and above user activation email for batch import using Advanced template comes in plain text instead of HTML.

  • CRSVC-25134: Internal iOS SDK application displays error on launch.

  • RUGG-10301: Proxy settings configured as part of staging WiFi profile (WS1) is not being applied, hence enrollment stalls

  • UM-313: When Directory User is added by batch import to child OG, Default Template configured on Global is sent.

  • UM-1845: REST API Endpoint Not Paging Correctly.

  • RUGG-10236: Unexpected error when clicking from Device -> Provisioning -> Product List View in UEM console.

  • RUGG-9961: Unable to add Applicability Rules to Products within Productsets through API.

  • MACOS-2609: macOS bootstrap package not being queued up for installation on new enrollments.

  • PPAT-9841: Device Traffic Rule set with ports goes blank in Console and Database.

  • MACOS-2595: iOS profile with Allow Removal With Authentication failing to install on supervised device.

  • FCA-200222: User Account Denial of Service.

  • INTEL-33360: Intelligence missing data.

  • FCA-199468: Message templates not showing full message body content in console UI.

  • FCA-199991: Application versions in Workflows are not honored when reverting from Latest available to a previous version.

  • FCA-200135: Console crash on report download from the Exports page.

  • FCA-195293: Timezone is not sorted on Create Organization Group screen.

  • ENRL-3226: Workspace ONE UEM DB Upgrade failure.

  • ENRL-3171: The smart groups are not updating post device OG change based on network range.

  • ENRL-3153: Device activation template.

  • CRSVC-25100: Baseline Microservice connection error when loading the baseline page in UEM.

  • CRSVC-25044: DuplicateCertificate_Purge job is not effectively removing duplicate certificates.

  • CRSVC-25020: High CPU memory utilization by scheduler service.

  • CRSVC-24731: System.ArgumentOutOfRangeException in DesiredStateCalculator class.

  • CRSVC-24709: Pulse VPN connectivity has been failing since UEM upgrade to 2105 and 2107.

  • CRSVC-24607: awdevicecomplianceactionsqueue backs up on the api nodes.

  • CRSVC-24526: SSL cert auth fails with ephemeral key when using web service references.

  • CRSVC-24437: Wi-Fi Adapter doesn't show up the correct IP Address.

  • CRSVC-24566: Unable to remove smart groups from Workflows.

  • CRSVC-24515: Phone, Current Carrier, and Home Carrier information show as Private in Device List View, even if Privacy setting is set to Display.

  • CRSVC-24392: Unable to delete workflow from workflow listview.

  • CRSVC-24331: API is not loading post upgrading to

  • CRSVC-19102: Unable to activate the inactive compliance policy from the Compliance page.

  • CRSVC-24419: "Send Message" window doesn't prompt while adding 'platform' filter on the device list view.

  • CMEM-186533: Escalation: Google email profile is republished after upgrading iOS devices to 14.8 & 15 (with compliance policy).

  • CRSVC-15742: FS Test connection does not correctly test network path.

  • CMSVC-15843: Profiles excluded from SG not removed on Publish.

  • CMCM-189381: Files from Office365 Sharepoint re-downloads on the Content app.

  • CMCM-189369: High memory Sproc calls.

  • CMCM-189335: Sync issue with Sharepoint O365

  • ARES-20841: Internal app publish fails due to duplicate key inserted error.

  • ARES-20824: API for modifying tenant storage configuration (PUT) is returning a 405 method not allowed response.

  • ARES-20564: Cannot publish applications with assignment rankings greater than 255.

  • ARES-20556: Mam apps api is returning status code 500 for unenrolled devices.

  • ARES-20504: Install Application Commands are not queued for Internal Apps upon app version publish.

  • ARES-20520: Look Value in email template is taking email address as noreply@company.com rather Enrollment Support Email

  • ARES-20495: Adding Organization Group to an assignment crashes the console.

  • ARES-20442: Adding app assignment fails with 500 internal Server Error.

  • AMST-34527: DSM flag is not being provided in the API.

  • AMST-34527: Windows Desktop Firewall Profile does not allow editing of IP ranges after saving profile.

  • AMST-34444: RestartDeadlineInDays Not Being Set in /begininstall API Call to Create a Windows 10 Application.

  • AMST-34331: API User deactivation flow not triggering wipe protection for windows devices in certain use-case.

  • AMST-34393: TOU not properly displayed on enrollment of device.

  • AMST-34373: Clicking the Remote Assist button shows the loading icon on the console forever and does not proceed further.

  • AMST-34329: Page navigation is not working properly for Sensor view within device's detail view

  • AMST-34286: OG delete fails if enrolled users also have ProfilePayloadIdentifierOnDevice assignment(s).

  • AMST-34074: Windows apps are not getting installed back with 2105 and above after an Enterprise reset.

  • AMST-33982: Windows update shows as unapproval failed for feature update.

  • AMST-33988: Devices are not syncing after DSP registration.

  • AMST-33903: Newly built and enrolled device, built with Windows 10 x64 image and enrolled with the 21.5.4 hub is not processing app install commands.

  • AMST-33898: Unable to authenticate for Dropship Provisioning in TechDirect when using lower OG.

  • AGGL-10940: Lockscreen Overlay under Samsung Knox Passcode payload not working with new DDUI changes.

  • AGGL-10950: Adding auto-install application under ChromeOS Kiosk payload disappears after Save & Publish.

  • AGGL-10922: Android OEM service fails to install during legacy device enrollment.

  • AGGL-10901: 'Lock Orientation' checkbox gets disabled upon save.

  • AGGL-10816: Device & DS out of sync.

  • AGGL-10867: Unable to save value as unselected.

  • AGGL-10815: Slow deployment of a new Public app.

  • AGGL-10797: Some Android Launcher profiles failing to load after upgrade to 2107 and DDUI FF enablement.

  • AGGL-10772: Config missing in DDUI Launcher Copy profile.

  • AGGL-8201: Multiple guard failures observed during the execution of AndroidWorkGoogleDeviceIdValidationJob across environments because of the absence of googleuserid for the device in Database.

  • AAPP-12809: APNs for applications expiring notification for AirWatch Container and AirWatch Inbox.

  • AAPP-12774: ScheduleOSUpdate API fails on UEM 2105.

  • AAPP-12438: Apple wallpaper setting applies with all options unchecked. Patch Resolved Issues

  • FCA-200862: Update SKUORDER update API to allow Freestyle basic SKU to be added to older UEM versions.

  • AAPP-13256: Exception seen on multiple environment. Patch Resolved Issues

  • FCA-200968: Migration script Notification.UpdateNotificationUUID is causing failures in upgrades.

  • UM-7238: User Group User List failing to load due to dbo.UserGroup_SelectUserGroupMembers sproc timing out. Patch Resolved Issues

  • AMST-34890: Disabling HardwareDeviceIdentifierForWindowsFeatureFlag is still merging device records.

  • AGGL-11276: Params to clear accounts is not sent on check-in from device details/auto logout. Patch Resolved Issues

  • CRSVC-26469: Workflow - Limit size of Reason in Workflow step status reason.

  • RUGG-10563: Unique key constraints error seen in ContentPullService Logs with very high count.

  • CRSVC-26375: SQL Blocked Processes on WMT PROD DB.

  • AMST-34954: Dropship Provisioning: Public access override and device E2E test Patch Resolved Issues

  • RUGG-10578: Multiple getnextmanifest calls are being made causing DB contention.

  • AAPP-13365: Classroom not showing updated classes.

  • SINST-175953: Seed 22.01 Hub to 2111 next patch

  • CRSVC-26589: Update the Claim "org_location_group_id" to use customer OrganizationgroupId where Opt in happens instead of Global OrganizationgroupId. Patch Resolved Issues

  • FCA-201416: Customer is experiencing slowness in device search after upgrade to UEM version 21.09.

  • AAPP-13368: Apple Fast Lane Message Queue Throttler leaks memory.

  • AMST-35116: Encryption Type always switch back to TKIP for Windows Desktop WiFi Profile.

  • CRSVC-26679: Optimization of the sp CoreAndDefaultAttributes_Update.

  • AGGL-11328: In Android DDUI, page crashes when editing Launcher profile with Miscellaneous app added to pinned row.

  • PPAT-10455: Internal SDK app throws Error Code:14 with Tunnel Proxy. Patch Resolved Issues

  • ARES-21698:DeviceProfile_SearchByDeviceDashboard_V3 causing tempdb contention. Patch Resolved Issues

  • RUGG-10571: JQuery upgrade to 1.12.

  • CRSVC-26834:The Trust Service log does not output even though the log level is changed to "verbose".

  • AMST-35181:Newly enrolled Windows 10 devices install x86 version of AppDeploymentAgent.

  • AMST-35156:Wrong device Attributes - Enrollment Type Id - on un/re-enrollment. Patch Resolved Issues

  • FS-818: RB-2111-Freestyle Orchestrator is still tagged as Tech Preview.

  • RUGG-10704:Copy and Edit of the existing provisioning profile creates the profile copy under Devices > Profiles & Resources section.

  • CRSVC-26920: Remove the index IX_DeviceExtendedProperties_RowVersion.

  • CRSVC-27368: Increase the SMTP username limit from 64 to 255 characters.

  • AMST-35248: Delay in processing windows install/removal commands for apps and profiles.

  • AGGL-11382: Launcher orientation is set to locked in XML when its not selected in the UI.

  • AAPP-13482:VPP Auto Update not working for some applications.

  • CMSVC-16026: Hub services - Unable to find the smart groups in the WS one hub services during assignment against templates.

  • AGGL-11415 [Passcode] Unable to send Clear Device/Work App Passcode in COPE.

  • AMST-35270: The Kiosk profile takes a longer time to install on the devices and sometimes days even though the device is checking in.

  • CMCM-189603:DB Contention issue with multiple calls to EnterpriseContent schema.

  • AAPP-13367: Issues Removing Apple Education Profile from iPads. Patch Resolved Issues

  • FS-800: Update Workflow Re-Evaluate to 4 hrs as default in system code.

  • FCA-201655: Console login failing for directory admin account with error "Invalid credentials". Patch Resolved Issues

  • AAPP-13556: VPP Book Syncs as Unknown Application.

  • CRSVC-27631: Delete dead records from Device State that are deleted from canonical.

  • AGGL-11472: Model of Android devices are missing on the console and displayed as "Android" instead.

  • CRSVC-27664: Dataplatform service consumes messages from sensor queue on alternate instances.

  • AMST-35482: Unable to find "Allow Enhanced PIN at Startup" in Windows Encryption profile. Patch Resolved Issues

  • AGGL-11387: Android Q Restrictions Check - Validate Staging Record prior to restrictions check. Patch Resolved Issues

  • AGGL-11512: Spaceman error while launching Android DDUI profiles.

  • INTEL-37061: Intelligence - Recovery Key Escrowed value not matching UEM.

  • AMST-35624: Update MSI deployment parameters of windows seeded apps.

  • AMST-35653: Dropship Provisioning: Duplicate Enrollment User. Patch Resolved Issues

  • INTEL-37768: Invalid column name 'RecoveryKeyPresent' - on multiple environments. Patch Resolved Issues

  • FCA-202361: Changes to Fix FK error due to Isolation level.

  • AGGL-11552: DDUI - Request to increase maximum character limit for Proxy Bypass Rules field in Chrome Browser Settings profile.

  • AGGL-11550: Customer is unable to set Launcher Administrative passcode with more than 10 characters

  • CRSVC-28135: "An error has occurred" while assigning Sensors. Patch Resolved Issues

  • AAPP-13655: iBeacon profile not getting automatically installed on device when in region.

  • AMST-35757: When enrolling VDI, the latest enrolled device overtakes existing device record.

  • CMCM-189713: Performance improvements for the RepositoryTemplate SProcs.

  • CRSVC-27973: Fix Compliance Evaluation when ComplianceDeviceStateIntegrationFeatureFlag is enabled.

  • CRSVC-28169: The enrollment certificate method only adds certificates to a chain if they have a private key. Patch Resolved Issues

  • AMST-35787: Unable to run Selective App list API call on the enrolled Win 10 devices.

  • AMST-35814: Domain join fails when Smart Groups evaluated before enrollment. Patch Resolved Issues

  • RUGG-10851: Provisioning/PoliciesViewDevices grid ‘Last Seen’ shows time 5 hours behind expected Admin time zone.

  • AAPP-13759: VPP licenses are not getting disassociated.

  • AMST-35938 Seed v2107.9 patch version of Hub to UEM.

  • CRSVC-28398: Missing compliance values causing failed device migration.

  • CRSVC-28308: Async email notifications cause thread pool exhaustion and suspends compliance evaluation.

  • AGGL-11679: DDUI is broken by a certificate date format in Android profiles.

  • AMST-35880: Windows Application Deployment Commands are only cleared after a manual Query or App Sample Query from UEM console.

  • CMCM-189750: Removing the ContentLockerSDKLibraryKey system code causes an override.

  • CRSVC-28932: Unable to install S/MIME profile due to 'Certificate is used more than once' error.

  • AMST-35816: Blobs being served by Device Services even when they are present in the CDN and Storage Type is set to 1.

  • LUEM-472: Failure during web enrollment with Hub package download.

  • FCA-202433: UEM console crash while navigating to Devices > Compliance Policies > Event Log.

  • AAPP-13760: iOS Device Updates page timeout issue.

  • RUGG-10851: Grid for "Last Seen' shows 5 hours behind expected Admin time zone.

  • CMSVC-16076: Tags Update API fails when organization group id is not passed. Patch Resolved Issues

  • CRSVC-28589: GSX certification save failed with password invalid.

  • UM-7450: Admin Groups not updating after Automatic or Manual sync.

  • CMEM-186612: Delay in adding the device to the allowlist from email list view. Patch Resolved Issues

  • AAPP-13878: MDM profile errors 'Decryption key for the profile is not installed'.

  • AGGL-11879: Android DDUI Launcher profile 'Lock Orientation' checkbox gets disabled upon save.

  • AMST-35970: Dropship Provisioning-Device registrations never make it to through the Bulk Importer Service. Patch Resolved Issues

  • AMST-36008: Greater Than or Equal to application detection operator not working.

  • CRSVC-29265: Time Windows not accessible.

  • AGGL-11901: Handsfree R5 devices are listed incorrectly in DB and UEM.

  • INTEL-38426: Intelligence - Recovery Key Escrowed value not matching UEM. Patch Resolved Issues

  • AGGL-11949: Zebra device model being reported as Unknown.

  • ARES-22093: External app assignment fails due to duplicate key error. Patch Resolved Issues

  • AMST-36174: Customer cannot upload missing dependencies for some .appx files while editing them.

  • ARES-21942: Android Enterprise - Failed to send managed app config (Add Retry mechanism for network failure).

  • ARES-22094: Internal app publish fails due to duplicate key inserted error.

  • ARES-22158: Editing an allow list app group having 2.3K apps takes approximately 6 minutes.

  • INTEL-38430: ETL | Analyze and fix checksum failures for tags involving special characters. Patch Resolved Issues

  • FCA-203017: Unauthorized endpoint in MVC> Angular migration: Account > Administrators > System Activity > batch Status.

  • CRSVC-29794: S/MIME certificates seemingly corrupted on DB.

  • MACOS-3153: Blank screen on macOS Web enrollment.

  • AMST-36170: AuthenticationToken_Load times out during enrollment.

  • AGGL-12049: Android Auto Seed: Model of Android devices are missing on the console and displayed as "Unknown" instead ofscript correction. Patch Resolved Issues

  • AGGL-11944: Chrome URL Allowlist/URL Denylist does not work on the latest Chrome Versions.

  • AGGL-12082: 'Force YouTube Safety Mode' and 'Enable Touch to Search' settings in Android Chrome Browser Settings profile are not saved with UEM console 2111 and above.

  • AMST-36289: Disable HardwareDeviceIdentifierForWindowsFeatureFlag.

  • ARES-22164: Slide Forced and Idle session timeout for blob upload use case.

  • CRSVC-29627: Triggering the 5K API calls per minute limit even though it has been longer than a minute. Patch Resolved Issues

  • AMST-36172:Huge number of timeouts in interrogator.windowsinformationsample_save SP.

  • AMST-36334: UEM Azure AD integration button link is broken.

  • FCA-203138: Improve performance of maintenance.AuditTable_Delete stored procedure. Patch Resolved Issues

  • AAPP-14120: [Device State] Enrollment exception for device POST calls with missing compliance status.

  • CRSVC-30309: API devices/{deviceID}/commands requires customCommandModel query.

  • CMCM-189867: Intelligence | Sandbox ETL logs ingestion very high.

  • CRSVC-30281: Include device state supplemental tools config files in UpdateSQLServerInfo tool. Patch Resolved Issues

  • CRSVC-25449: Fix stored procedure deadlocks. Patch Resolved Issues

  • AAPP-14354: Copying iOS Restrictions Profiles with Hide Apps payloads does not add the Hide Apps payload to new profile.

  • AAPP-14362: Find Device option not populating when device is turned off and then on.

  • CRSVC-30605: Integrated Authentication certificate does not rotate to new CA when we modify the settings for the Web under SDK settings

  • CRSVC-30896: Unable to delete Certificate Authority.

  • RUGG-11098: Product Compliance API is returning Internal server error (500) in some specific cases. Patch Resolved Issues

  • INTEL-41601: ZDT DB upgrade failed while deleting SP and type.

  • RUGG-11267: Smart groups with OS version criteria not updating when a device updates OS version.

  • CRSVC-31185: Entitlement service migration tool fails to connect to database on DB credential change. Patch Resolved Issues

  • MACOS-3280: Seed the Model information for new "M2" Mac models.

  • CRSVC-31408: DSM action cleanup stored procedure throws collation error when the server and database collation is different. Patch Resolved Issues

  • ENRL-3534: Unenrollment date is Null in Intelligence.

  • CRSVC-31783: GSX test connection fails with SSL error.

  • CRSVC-31691: Mac OS X conditional access UEM is reporting device_type and operating_system as UNKNOWN when device changes its status.

  • RUGG-11333: Delay in Products getting assigned to Android devices. Patch Resolved Issues

  • MACOS-3335: Device Details page crashing for Linux devices when loading processor architecture from latest Device State Service.

  • CMEM-186700: PowerShell failing with error message: "User credential of the remote PowerShell server contains the special characters." Patch Resolved Issues

  • ARES-23093: High latency in purge expired sample Data job execution.

  • CRSVC-32060: “Renew Certificate" not working as expected in Certificate list view. Patch Resolved Issues

  • AAPP-14536: Delay in OS seed script deployment is causing data inconsistency.

  • CRSVC-32319: Add telemetry for counting usages of the unsigned Secure Channel payloads. Patch Resolved Issues

  • CMCM-190120: Remove the usage of template load from DS endpoint.

  • UM-7637: Deactivating 100 users in bulk fails on UEM console Patch Resolved Issues

  • AMST-37312: Device Identifier & UDID mismatch for any reason should not unenroll device. Patch Resolved Issues

  • AAPP-14776: Cannot enable Device Assignment for certain VPP applications.

  • CMCM-190218: Content App cannot show content in the specific folder in Repository Patch Resolved Issues

  • AMST-37559: Security sample improvements.

  • CRSVC-33270: Add debug logging to the HMAC Canonical code. Patch Resolved Issues

  • ARES-24023: Android Public Application assignment is not working as expected.

  • AGGL-13505:Android Restriction "Allow user to modify Location Settings for Work Profile" not working.

  • AGGL-13410: Unable to save entries in URLAllowlist / URLBlocklist for Chrome Browser Settings profile. Patch Resolved Issues

  • AAPP-15118: Certain VPP Apps are stuck pending check. Patch Resolved Issues

  • FCA-204432: Report name is randomized while downloading legacy reports. Patch Resolved Issues

  • AMST-38164: Location option missing in Bulk management for Windows devices

  • ARES-24522: Internal app publish fails due to duplicate key inserted error.

  • RUGG-11731: Android Enterprise Launcher profile folder names missing Patch Resolved Issues

  • MACOS-3612: Added support for new hardware released Jan 24.

Known Issues

  • FCA-200853: Angular app should load for all types of admins.

    There are APIs which are called as part of the angular app load which are resource protected. Since, these are minimum permissions needed to start the angular app, the app fails to load for custom roles without having these permissions.

    A workaround for this issue is to add the required permissions to an admin role. You can view more information here.

  • AGGL-11106: Adding a version to launcher profile inside a product causes launcher to stay on reload screen.

    Customer is installing launcher profile via products. Recently when they are updating the launcher profile and resaving (adding a new version) they are seeing that the profile gets removed for the device in the console, before getting installed again. Prior to this issue the profile would update on the device without having to be removed and applied again. This is due to the missing option to activate/deactivate while adding a new version of launcher profile in the new data driven profiles UI deployed via products.

    Workaround: We can deploy the new version of launcher through the profiles and resources and not through updating the provisioning profile.

  • AGGL-11108: Hub - Catalog shows incorrect version when Prod and Beta tracks exist.

    When querying Google Play to determine what version of the app to display in the Catalog, the first result is chosen without considering the assignment or installation of the application version. This can cause a beta version number of the app to appear even if the beta version is not installed or assigned to the user.

    Workaround: Removing the beta version from Google Play or assigning the beta version to the device would prevent the wrong version from being displayed.

  • AGGL-11107: App Config: Unable to save value as unselected.

    Android app config was designed to allow for configurations to be 'unselected' so that they are excluded from the configuration sent to Google.Unselecting something is different based on the data type (text field can be left blank, boolean can be set to 'Select', etc).For Booleans, setting it to "Select" is not saving but is excluded in the payload sent to the device. So on edit, the unselected value is set to the default value of the field

    Workaround: The deployment and the policies set on the device is not impacted but when editing an app configuration that is deployed with "Unselected" boolean value, it has to be set back to "Unselected" on edit.

  • FCA-200675: Freestyle details page has an truncated issue after you publish a workflow.

    If Publish workflow action fails or we “Pause” the workflow and go to the workflow details page then breadcrumb navigation menu is getting truncated from the workflow details page.

    Workaround: On page refresh, we can see the complete breadcrumb navigation menu.

  • FCA-200676: The translated strings "Console" and "Browser" are not loaded in login history list.

    In Login history page Login Type & Application column value (console & browser respectively) is not getting translated into the console locale.

    Workaround: No Workaround, as it is a localization issue and content is always getting displayed in English.

check-circle-line exclamation-circle-line close-line
Scroll to top icon