My Technology Blog
Published date October 24, 2022
When looking at a physical network, we can think of the DMZ as an area where our internet-facing services will reside, keeping our LAN isolated. I recognise that there isn’t a single formula that satisfies all use cases but, for the sake of argument and simplicity, I will be considering the DMZ as a barrier that exists between the Internet…
Published date September 11, 2022
PowerCLI can be very useful to automate tasks in a number of different use cases. On my home lab, I sometimes need to deploy new instances of NSX-T for testing purposes. Instead of installing those manually, I have created a simple script to automate this process. Instructions on how to install PowerCLI can be found at: As usual, I feel…
Published date February 21, 2022
On version 3.1.1, NSX-T introduced OSPF v2 support, which provides an alternative for customers that are not willing to work with BGP and/or Static Routes. On this post I will go over a basic configuration of OSPF on NSX-T, demonstrating the neighbour adjacencies that are established and testing connectivity between a VM on an NSX-T segment and a Loopback interface…
Published date July 4, 2021
On my post How to use Workspace ONE Access APIs I showed how to authenticate to the Workspace ONE Access APIs using the HZN cookie. Although using the HZN cookie provides a quick an easy way to do API calls, it may not the best approach in case you need to programmatically interact with Workspace ONE Access using APIs. Below…
Published date June 16, 2021
For starters, I feel that I it is my duty to advise that the contents of this post are not supported by the manufacturers and it is definitely not a good idea to implement this in any Production environments. With the release of vSphere/ESXi 7.0 a number of changes were introduced, including the deprecation of VMKLinux drivers. This means that…
Published date March 6, 2021
Okta offers the Universal Directory which is a user management system that provides a view of all integrated directories, including Okta’s internal user directory, from a single pane of glass. When integrating Workspace ONE UEM with Okta, we can leverage the the LDAP Interface, which is a component that allows us to connect LDAP applications to the Okta Universal Directory…
READ MORE Okta LDAP Interface integration with Workspace ONE UEM
Published date March 2, 2021
Typically, on an highly available Workspace ONE Access deployment, initially the first server is configured and services such as the KDC (used for iOS Mobile SSO) are initialized. After that, this server is cloned and the 3-node cluster is formed. The KDC service is usually initialized by running the following command: There might be a case where you need to…
READ MORE How to change the Workspace ONE Access KDC configuration on a cluster
Published date January 29, 2021
When deploying the Workspace ONE Access appliance we would usually login to the vSphere Client and use the Deploy OVF Template function. However unlikely, there might be a case where this interface is not available, so we would then need to find an alternative, such as using PowerCLI to perform this deployment. PowerCLI is a command-line tool that runs over…
Published date January 26, 2021
The VMware Unified Access Gateways are hardened appliances with well defined services and settings. This means that, even though UAG is a Linux machine and administrators can have full access to its CLI, we shouldn’t really be installing extra components on it. When it comes to troubleshooting networking issues, we can login to the CLI and use tools such as…
Published date January 26, 2021
Chrome is a very popular browser, however when setting it up on managed devices, it might be useful to customise its configuration. Chrome Enterprise has options to be configured via the MDM through a .mobileconfig file that we generate using the Chrome Bundle downloaded from Google. This configuration is divided in 4 parts. Initially we will download all the necessary…
READ MORE How to configure Chrome on macOS via Workspace ONE UEM