Security policies

Allows users to disable device cameras. Users can disable both rear and front cameras or disable only front or rear cameras.

Allows users to disable access to location services by the device.

Extension:

As an extension to the function, a spoof location can be set which will use a predefined and fixed location value instead of the real device location.

Allows users to disable USB functions including File Transfer, MIDI, PTP for connected devices. Disabling the USB will not prevent the device from charging through it.

Allows users to disable Bluetooth connection on the device.

Allows users to disable WiFi connectivity functions on the device.

Allows users to disable screenshot taking on the device. The screenshot-taking permissions affect screenshot-taking through any application, including system or third-party applications.

Allows users to disable the usage of the microphone on the device. Disabling the microphone will prevent all voice functionality including calls, push-to-talk messages, audio recording, and audio feed on recorded videos.

Allows users to disable the usage of the fingerprint sensor on the device.

Allows users to disable the Developer options on the device.

Allows users to disable voice services on the device. When disabled it restricts all incoming and outgoing telephony calls on the device. VoIP calls made through apps (such as Secure Chat) are not restricted.

Allows users to disable SMS and MMS services on the device. When disabled it restricts all incoming and outgoing SMS or MMS messages, including silent SMS or MMS. Chat messages made through apps (such as Secure Chat) are not restricted.

Allows users to disable Micro G services on the device. When disabled, the following services will be affected:

• Location services will not be provided

• Push notifications will not be provided for third-party apps that do not have a dedicated notification delivery service.

Allows users to disable the capability to change the screen timeout on the device. Devices with disabled screen timeout will use the default screen timeout.

Allows users to enable a scrambled lock screen numpad feature. The scrambled numpad is affecting the device lock screen.

Allows users to change the frequency of the sync between device and server.

The Sync interval in combination with Max failed sync determines the threshold set by the user for the maximum allowed time for the device to be "offline". When the threshold is reached, an automated device wipe flow will trigger and delete all of the device data.

For example, if the Sync interval is 4 hours, and the Max Failed Sync is set to 50, the device will wipe if it fails to sync 50 times in a row, with an attempt to sync every 4 hours (wiping the phone if it is offline for 200 hours).

Allows users to disable OS updates downloading via Mobile Data, requiring a WiFi connection to download the OS update.

Allows users to disable installation of any software outside of the System App Store. When disabled, no software can be installed through any third-party App Store or a local install (e.g. APK file).

Allows users to restrict third-party applications from getting device access. Enabling this will not automatically grant access to third-party applications. To do that, users should enable this policy and also grant each app the accesses they need, from Settings > Privacy > Permission Manager or from Settings > Apps & notifications > (select app) > Permissions

Users can disable account re-enrollment, which will prevent enrollment with the same account on the same or another device.

Allows users to set a WIPE PIN used for instant device wipe when the selected PIN is entered on device unlock.

Allows users to restrict the change of their user account password.

Allows users to disable the accelerometer sensor used to measure the acceleration force in m/s2 that is applied to a device on all three physical axes (x, y, and z), including the force of gravity.

Extension:

As an extension to the function, the user can spoof the values of the sensor.

Allows users to disable the geomagnetic field sensor used to measure the ambient geomagnetic field for all three physical axes (x, y, z) in μT.

Extension:

As an extension to the function, the user can spoof the values of the sensor.

Allows users to disable the gravity sensor used to measure the force of gravity in m/s2 that is applied to a device on all three physical axes (x, y, z).

Extension:

As an extension to the function, the user can spoof the values of the sensor.

Allows users to disable the gyroscope sensor used to measure a device's rate of rotation in rad/s around each of the three physical axes (x, y, and z).

Extension:

As an extension to the function, the user can spoof the values of the sensor.

Allows users to disable the light sensor used to measure the ambient light level (illumination) in lx.

Extension:

As an extension to the function, the user can spoof the values of the sensor.

Allows users to disable the linear acceleration sensor used to measure the acceleration force in m/s2 that is applied to a device on all three physical axes (x, y, and z), excluding the force of gravity.

Extension:

As an extension to the function, the user can spoof the values of the sensor.

Allows users to disable the orientation sensor used to measure degrees of rotation that a device makes around all three physical axes (x, y, z).

Extension:

As an extension to the function, the user can spoof the values of the sensor.

Allows users to disable the proximity sensor used to measure the proximity of an object relative to the view screen of a device. This sensor is typically used to determine whether a handset is being held up to a person's ear.

Extension:

As an extension to the function, the user can spoof the values of the sensor.

Allows users to disable the rotation vector sensor used to measure the orientation of a device by providing the three elements of the device's rotation vector.

Extension:

As an extension to the function, the user can spoof the values of the sensor.