To protect yourself from such attacks, it’s recommended to secure your workspace with strict permissions. Also, it’s recommended to update to the latest version of Workspace ONE Access. In addition to the above, there are two other issues that you should know about. First, if you are using Revoke tokens, it’s recommended to change them regularly. Second, be careful while updating through the management web interface.
Revoke Tokens
& Update from Web Interface
Revoke Tokens
If you are using Revoke tokens, it’s recommended to change them regularly. You can revoke them by going to the Revoke tokens tab under Security and selecting your token.
Update from Web Interface
Be careful while updating through the management web interface. If you update through the web interface and a successful login is made, it’s possible that another user with administrative permissions could gain access to your account. In addition, if you are using the Windows client, be sure to update your antivirus software before updating the software and deleting any old data.
Revoke tokens on access request
If you are using the RevokeTokens() API, it’s recommended to change your tokens regularly. This is because every time you revoke a token, if someone else has access to the revoked token they can use that token to access your workspace. To prevent this from happening, it’s suggested that you change the revoked tokens regularly so that someone cannot use it.
Timeline
Published on: 04/13/2022 18:15:00 UTC
Last modified on: 04/21/2022 02:40:00 UTC