Summary and Additional Resources

Summary and Additional Resources


This operational tutorial provided steps to configure VMware Tunnel and Content Gateway edge services for Unified Access Gateway in a Workspace ONE UEM environment. 

The following procedures were included for VMware Tunnel:

  • Configure VMware Tunnel in the Workspace ONE UEM Console
  • Deploy Unified Access Gateway enabling VMware Tunnel edge services through PowerShell
  • Define network traffic rules for Per-App Tunnel
  • Configure VPN Profile and deployment Workspace ONE Tunnel client
  • Validate access to internal websites based on device traffic rules

The following procedures were included for Content Gateway:

  • Configure VMware Content Gateway in the Workspace ONE UEM Console
  • Deploy Unified Access Gateway enabling Content Gateway edge services through PowerShell
  • Add network file share as content repository in Workspace ONE UEM
  • Define security policies for mobile devices when accessing corporate files in specific folders
  • Use Workspace ONE Content application to access internal files

Terminology Used in This Tutorial

The following terms are used in this tutorial:

application store A user interface (UI) framework that provides access to a self-service catalog, public examples of which include the Apple App Store, the Google Play Store, and the Microsoft Store.
auto-enrollment Auto-enrollment simplifies the enrollment process by automatically enrolling registered devices following the Out-of-Box-Experience.
catalog A user interface (UI) that displays a personalized set of virtual desktops and applications to users and administrators. These resources are available to be launched upon selection.
cloud Asset of securely accessed, network-based services and applications. A cloud can also host data storage. Clouds can be private or public, as well as hybrid, which is both private and public.
device enrollment The process of installing the mobile device management agent on an authorized device. This allows access to VMware products with application stores, such as VMware Identity Manager.
identity provider (IdP) A mechanism used in a single-sign-on (SSO) framework to automatically give a user access to a resource based on their authentication to a different resource.
mobile device management
(MDM) agent
Software installed on an authorized device to monitor, manage, and secure end-user access to enterprise resources.
one-touch login A mechanism that provides single sign-on (SSO) from an authorized device to enterprise resources.
service provider (SP) A host that offers resources, tools, and applications to users and devices.
virtual desktop The user interface of a virtual machine that is made available to an end user.
virtual machine A software-based computer, running an operating system or application environment, that is located in the data center and backed by the resources of a physical computer.

For more information, see the VMware Glossary.

Additional Resources

About the Authors

This tutorial was written by:

  • Andreano Lanusse, End-User-Computing Staff Architect, Technical Marketing, VMware.


The purpose of this tutorial is to assist you. Your feedback is valuable. To comment on this tutorial, contact VMware End-User-Computing Technical Marketing at