The Management Plan is the best choice for gaining more control over permissions, app installations, and remote mass blocking. This plan includes all the functionalities listed below.
Inventory Management:
Device inventory report.
Device data such as internal storage, memory card, user data, manufacturer, model, version, IMEI, Serial Number, activation date, user email, ID.
Audit Logs:
View actions performed in the Pulsus database (WEB).
Identify affected items, actions taken, the administrator responsible, and the origin of the action.
Allowed Actions:
Reboot, synchronization, push message, sound alert, user recertification, lock and unlock, data wipe, management removal.
Parameter:
Information capture time: 60 minutes.
Alerts:
SIM card change alert.
Notification tab for WEB admin with information on SIM card removal or insertion.
Location:
View the last 15 captured locations of the device.
Disable Factory Reset Settings:
Protects the device against unauthorized factory reset actions through the settings menu.
Restrict Account Activation after Factory Reset:
FRP (Factory Reset Protection) prevents the device from restarting without adding the account registered in Pulsus after a factory reset.
Disable Screenshot Capture:
Prevents the user from taking screenshots of confidential corporate information.
Disable USB File Transfer:
Prevents file sharing via USB, avoiding the export of corporate data to unauthorized devices.
Disable Debugging Features:
Prevents debugging on the device, reducing the risk of data leaks and associated risks.
Installation of Apps from Unknown Sources:
Prevents unauthorized installation of apps from unauthorized sources, avoiding the installation of malicious apps or apps that may impact device performance or user productivity.
Disable Physical Media Card Reading:
Blocks the use of SD cards, preventing the insertion, copying, or importing of unauthorized and contaminated content and files.
Disable NFC Data Sharing:
Prevents extraction of files/information with potential sensitive corporate data.
Manage System Update Policy:
Define a permissible period for possible system updates, allowing the IT team to work on necessary adjustments before updates occur and avoiding OS (operating system) updates during business hours, impacting operations.
Set Date and Time Automatically:
Automatically set date and time to prevent potential fraud by users attempting to manipulate the system or applications that use date/time as a reference for user-performed actions.
Force High Precision Location:
Activates features in the Android operating system, such as GPS, WiFi, and mobile networks, to determine the device's location with greater accuracy and speed.
Prevent User from Adding or Removing Accounts:
Prevents the user from adding unauthorized accounts to the device, mitigating risks with improper actions, such as installing unauthorized apps and using unofficial email tools from the company, compromising security, performance, and productivity.
Prevent Google Play Protect from Being Turned Off on Devices:
Essential feature to ensure that Play Protect is running and checking for the presence of malicious applications in real-time, using a global database of information from Google and other partners.
SSO Login:
Allows the WEB Administrator's login to use Single Sign-On (SSO) through SAML (Security Assertion Markup Language), a feature that not only simplifies day-to-day tasks but also enhances digital security.
Allowed Sites:
Important for controlling access to inappropriate content, for example, preventing students from accessing pages verified in advance by educational institution authorities.
Device Password Pattern:
Security feature that forces the user to implement a screen lock password on the device, according to the complexity level defined by the company administrator.
Certificates - CA Distribution via Upload:
Allows the upload and installation of CA certificates on company devices. With CA certificate installation, it is possible to: enable secure access to corporate sites (SSL) and enable data traffic encryption.
Dashboard:
Alerts for potential issues on devices.
[Add-on Option] Remote Control:
Supports field teams in accessing and operating their devices remotely. This allows support personnel to control the device remotely and perform necessary actions on the geographically dispersed device.
Launcher or Kiosk Mode:
Allows the administrator to replace the original interface of the devices, customizing the wallpaper, available applications, and authorized features.
BYOD: Profile Separation (Work/Personal):
Allows the creation of an isolated work profile, separating personal and corporate data. Typically used for personal devices accessing corporate resources while maintaining the security of company data or corporate-enabled devices for personal use, isolating corporate information for secure and separate personal resources.
App Installation Report:
Provides an overview of installed applications on active devices in the environment, with installation status information and their versions. This view allows more effective management of applications, such as outdated versions that may impact technical compatibility or security issues.
Disable Firmware Update (OTA):
This function allows blocking device firmware updates. This feature is important if your company has applications that may not be ready to run automatically on new versions of the operating system.
Disable Airplane Mode:
For operations that do not depend on this mode, the policy prevents devices from being placed in airplane mode to avoid interruptions in information synchronization. Use cases include device theft, where the thief puts the device in airplane mode to avoid tracking.
Disable Tethering Mode:
Assists companies in controlling expenses with mobile data packages and disables the internet sharing mode to other devices, helping companies control mobile data expenses.
APN Configuration:
Allows manual configuration of APN (access point name), carrier connectivity configuration, which in some operations may need to be done manually (MVNOs, private APNs, etc.).
Location Report:
Ideal for advanced administrators to conduct more complex analyses involving location, speed, etc. With these reports, our clients have conducted analyses of absence at points of sale or points of interest.
Wi-Fi Management:
Allows the administrator to manage WiFi connection, pre-configuring networks (SSID, protocol, and password), and defining the WiFi status (Force on, off, or neutral). For example, in operations with very sensitive data, forcing WiFi off can be important to prevent sensitive data traffic on unknown networks.
Prevent User from Turning Off WiFi:
Allows the company administrator to prevent the user from turning off the device's WiFi, interrupting device synchronization with the Pulsus platform.
Allowed Phones:
Allows control over whether the device can make and/or receive calls, choosing which phones the user is allowed to call or receive calls from.
Email - Remote Configuration of Corporate Email Account:
Allows pre-configuration of the email client when installed on devices, depending on the implementation inserted by the email client developer.
PlayStore Access Control (Whitelist/Allowed):
Allows the Pulsus Administrator to restrict the apps available in the Play Store for the user to access through the device. Only apps defined by the Administrator will be accessible to the user, preventing the installation of unauthorized apps.
General Data Consumption:
View mobile data by company group and by device in the last 45 days.
Remote View:
The company administrator will be able to remotely access the system and provide visual guidance to the user on the actions needed to resolve the issue.
App Installation Parameterization:
Installation from the Store (Play Store and Apple Store).
Installation by app installer (APK, IPA).
Custom app settings (Managed Configuration).
Creation and distribution of WebApps (WebView).
Distribution of Files and Folders (Android Only).
Distribution limit of 250mb.