The MDM integration service included with the Windows-based User-ID agent performs a full HIP query to the Workspace ONE MDM server to retrieve the complete host information for a mobile device. GlobalProtect apps on the mobile devices also send HIP information to the gateway, which merges HIP information from the GlobalProtect apps and the MDM integration service. When a mobile device running the GlobalProtect app is connected to a GlobalProtect gateway, GlobalProtect can apply security policies with host information profiles.

You can configure the MDM integration service to fetch Workspace ONE device information at regular intervals and push this information to the GlobalProtect gateways. In addition, the service can monitor Workspace ONE event notifications and fetch updated device information when Workspace ONE events (such as compliance changes) occur.