You can configure to deploy public and internal applications based on the device management status. Any device can access applications that are configured as open access apps. Only devices that are granted permission through the Workspace ONE Intelligent Hub app can access applications that are configured for managed access.
The table outlines capabilities for both managed and unmanaged scenarios.
|Access Type||Features||Description||Suggested Uses|
|Open Access (unmanaged)||
||Users access resources on their device without granting admins permission to access their device.
The applications with open access are available to devices no matter their managed status. Admins cannot systematically remove native applications when they are set to Open Access.
||Users install a management profile on their device to grant admins permission to access their device.
Applications with managed access are available to devices that Workspace ONE UEM manages.
If Workspace ONE UEM does not manage the device, Workspace ONE prompts the user on the device to enroll with Workspace ONE UEM. If the device is enrolled, the user can use the device to access the application through Workspace ONE.
For information on where to configure managed access options for internal applications or how to add public application for deployment through Workspace ONE, see the Workspace ONE UEM Mobile Application Management Guide.