Retail worker using mobile device in store
Announcements VMware Workspace ONE Workspace ONE Unified Endpoint Management

Workspace ONE extends shift-based access control for frontline workers with UKG Dimensions integration

Last year, we announced shift-based access control for frontline worker bring-your-own (BYO) and corporate-owned, personally-enabled (COPE) deployments with VMware Workspace ONE Unified Endpoint Management (UEM) and WorkJam. Today, we’re excited to announce that VMware has partnered with UKG — a leading provider of HR, payroll, and workforce management solutions — to extend our shift-based access control capabilities to support UKG Dimensions. With this new integration, customers can selectively restrict access to sensitive work content while employees are off the clock, based on time and attendance data from UKG Dimensions.

Frontline workers (including task and service workers) play an essential role in every industry and represent 80% of the global workforce. Yet organizations have struggled to provide their frontline workers with the same user-friendly devices and tools traditionally used by corporate employees or knowledge workers. However, recent world health crises, high employee turnover, and evolving worker demographics and expectations have forced organizations with frontline workers to redefine their digital strategy. To bridge this technology gap, industry leaders — particularly those in the retail sector — are embracing BYO, COPE, or a combination of the two to boost employee engagement, productivity, and efficiency, while decreasing costs.

When it comes to BYO or COPE for frontline workers, it’s critical organizations safeguard the business apps and data workers need to access on the job (like customer information or inventory data). At the same time, they must protect employee privacy and provide a seamless user experience. Organizations with hourly employees must also ensure their BYO and COPE policies are compliant with local and national labor laws and regulations that may limit or prohibit workers from accessing work content while not being compensated.  

With shift-based access control, Workspace ONE customers can selectively restrict access to sensitive corporate content on devices (like task or inventory management apps) when employees aren’t on the clock. While off the clock, workers can still use their BYO or COPE device to access non-work features and personal data, as well as non-sensitive corporate content (like HR and shift scheduling apps). Shift-based access control is completely customizable and can be configured for any web, mobile, or software-as-a-service (SaaS) app leveraging Workspace ONE Access single sign-on (SSO), as well as Workspace ONE Intelligent Hub or Hub Services. With Workspace ONE’s multi-tenant architecture, IT can also configure access by use case, worker role, or individual.

Shift-Based Access Control with Workspace ONE Workflow
Figure 1. Shift-Based Access Control with Workspace ONE Workflow

Workspace ONE and UKG Dimensions or WorkJam customers can currently leverage shift-based access control for frontline BYO and COPE use cases in tech preview, with the feature planned for general availability (GA) early this year. To learn more, visit