All Collections
Configurations
Security
Security
Updated over a week ago

The Security configuration will force the use of a lock password on all devices. From this configuration we will require the employee to register a password to keep security on the devices.

To configure this, go to the Configurations menu, choose the configuration you wish to change and click the Security option.

This functionality has two configuration options.

We will explain in detail both options below.

1. Device Password.

1a.Enabled Password Policy, where you will see sets of rules to better define this functionality, when enabled.

Prerequisite: Available for devices with DO (Device Owner) Android 5.0+, FM (Fully Manager) + WP (Work Profile) Android 5.0+ and WP Android 5.0+;

1b.Password Quality is the configuration that defines the rules that will be applied to define whether a password is valid for use or not.

Low Complexity: Password should be changed every x days - you can define the number of days the password should be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

Medium Complexity: Password should be changed every x days - you can define the number of days that the password must be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

High Complexity: Password should be changed every x days - you can define the number of days that the password should be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

Simple Password or Design: A password or design with no size or quality requirement should be used.

Numeric: Password should be numeric - Minimum of 4 characters to 16 characters - Password must be changed every x days - you can define the amount of days the password should be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

Alphabetical: Password should include at least one letter - Minimum of 4 characters to 16 characters - the password should be changed at every x days - you can define the number of days the password should be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

Alphanumeric: Password should include at least one letter and one number - Minimum of 4 characters to 16 characters -Password should be changed at every x days - you may define the number of days the password should be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

Weak biometric: Password can be biometric with weak security - Minimum of 4 characters to 16 characters - Password should be changed every x days - you can define the number of days the password should be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

Complex numeric: The password should be numeric or more complex. If numeric, a password cannot contain repeated (4444) or orderly (1234, 4321, 2468) sequences.

Minimum of 4 characters to 16 characters - Password should be changed every x days - you can define the number of days the password should be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

1c: Lock device after:

Maximum x minute(s) of inactivity: You can define the device to lock within up to 5 minutes of inactivity;

The device data should be deleted after x attempts to unlock it using an incorrect password; You can decide not de delete or delete choosing a number from 0 to 10 error attempts;

Remember that the device, on being deleted, returns to the default settings without the asset management.

1d. Enable the storage encryption.

The file encryption helps protect your data by encrypting them. Only someone with the correct encryption key (such as a password) can undo the encryption.

Note: Basically, this function is called by an application that is managing the device to request that the storage system be encrypted. However, it does not change the device storage encryption, nor does it affect the encryption status of the device.

The Operating System is required to do this procedure. This policy controls the encryption of the secure storage area (application data). Data written to other storage areas may or may not be encrypted, and this policy does not require or control encryption of other storage areas.

1e. Require a Strong Password:

Prerequisite: DO Android 5.0+, FM + WP Android 5.0+ and WP Android 5.0;

You may choose two options:

1e.1. Device Default

Note: For devices managed on the Fully Managed (DO) mode the “Device Default” will always be 1 hour.

1e.2. At every 24 hours

Note on the option Require Strong Password:

Timeout required for strong authentication: A strong authentication password (such as PIN or password) must be entered after a timeout period, set by the environment administrator.

After the timeout period, non-strong authentication methods (such as fingerprint, face unlock) are disabled until the device is unlocked with a strong authentication password

2. Work Profile Password

2a. Enabled Password Policy, where you will see sets of rules to better define this functionality.

Prerequisite: FM + WP Android 5.0+ and WP Android 5.0;

2b. Password Quality is the configuration that defines the rules that will be applied to define whether a password is valid for use or not.

Low Complexity: Password must be changed every x days - you can define the number of days that the password must be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can set after how many days a password that has already been registered can be used again.

Medium Complexity: Password must be changed every x days - you can define the amount of days that the password must be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can set after how many days a password that has already been registered can be used again.

High Complexity: Password must be changed every x days - you can define the number of days the password should be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

Simple Password or Design : A password or design with no size or quality requirement should be used.

Numeric: Password should be numeric - Minimum of 4 characters to 16 characters - Password must be changed every x days - you can define the amount of days the password should be changed, between 0 and 365. You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

Alphabetical: Password should include at least one letter - Minimum of 4 characters to 16 characters - the password should be changed at every x days - you can define the number of days the password should be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

Alphanumeric: Password should include at least one letter and one number - Minimum of 4 characters to 16 characters -Password should be changed at every x days - you may define the number of days the password should be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

Weak biometric: Password can be biometric with weak security - Minimum of 4 characters to 16 characters - Password should be changed every x days - you may define the number of days the password should be changed, between 0 and 365.

You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

Complex numeric: The password should be numeric or more complex. If numeric, a password cannot contain repeated (4444) or orderly (1234, 4321, 2468) sequences. Minimum of 4 characters to 16 characters - Password should be changed every x days - you can define the number of days the password should be changed, between 0 and 365.You can re-register a password that has already been used after x different passwords have been registered - you can define after how many days a password that has already been registered can be used again.

2c: The work profile and its data should be deleted after occurring x attempts of unlocking using an incorrect password

You may decide not to delete or delete choosing a number from 0 to 10 error attempts;

Remember that, upon being deleted, the device returns to the factory default settings without the asset management

2d. Require a Strong Password:

Prerequisite: DO Android 5.0+, FM + WP Android 5.0+ and WP Android 5.0;

You may choose two options:

1. Device default

Note: For devices managed on the Fully Managed (DO) mode the “Device Default” will always be 1 hour.

2. At every 24 hours

Note on the option Require Strong Password:

Timeout required for strong authentication: A strong authentication password (such as PIN or password) should be entered after a timeout period defined by the environment administrator. After the timeout period, non-strong authentication methods (like fingerprint, face unlock) are disabled until the device is unlocked with a strong authentication password

To remove the password you should click Clear Password, however, this rule will be applied again as the device will be in a group that has this configuration.

Did you like this article? Do you have any questions or suggestions?

Please contact us through the email [email protected] and share your experiences.

Your opinion is very important to us. 😊

Related Articles
Configurations - Main Menu
Device Information and Actions
Creating the Enterprise Account (Mobile Application Management)
Geofence
Security Plan
Did this answer your question?