The Security Profile configures policies related to the creation of device-level PINs (also called a passcode or access code). PINs are used by users to unlock their mobile devices.
Note: Android only supports the following settings: allow simple, force pin, minimum length, require alpha, max inactivity and max failed attempts.
Allow Simple - If checked, permits users to use sequential or repeated characters in their PINs (passcodes). For example, this would allow the passcodes 3333 or DEFG.
Force PIN - If checked, the user must supply a PIN (also called a passcode or access code) to access the entire mobile device. If not checked, no PIN is required.
Note:BYOD Preset Profiles may enforce an app-level PIN as well. The two PINs are independent of each other.
Maximum Failed Attempts - Determines how many failed PIN attempts can be made before the device is wiped. The default behavior is device manufacturer dependent.
Maximum inactivity - The number of seconds to wait while a user does not use the device before locking the device.
Maximum PIN Age in Days - The maximum number of days to use the same PIN.
Minimum Complex Characters - The minimum number of complex characters required in a PIN.
Minimum Length - The minimum length required for a PIN.
Require Alphanumeric - If check, requires both alphabetic and numeric characters.
PIN History - If checked, maintains a PIN history.
Maximum Grace Period - Specifies how soon the device can be unlocked again after use, without prompting again for the PIN.
iOS Profile (read-only)
Profile Type - The type of profile.
Name - The name of the profile.
Description - A description of the profile.
Allow App Installation - If checked, applications can be installed.
Allow Camera - If checked, the camera on the device is enabled.
Maximum Failed Attempts - If the user exceeds the number of passcode attempts allowed, typically 10, the phone becomes locked. The only way to use it again is to restore the phone to the factory settings, which wipes all data from the phone in the process. After restoring the phone, the phone can be restored to the last backup made.
Allow Screen Shot - If checked, the device can create snapshots of its own screen.
Allow YouTube - If checked, YouTubeä is enabled.
Allow iTunes - If checked iTunesä is enabled.
Allow Safari - If checked, the Safari web-browser is enabled.
Allow Face Time - If checked, users can place or receive FaceTime video calls.
Allow automatic sync while roaming - If checked, devices sync while roaming. If unchecked, devices sync only when an account is accessed by the user.
Allow Siri - If checked, users can use Siri, voice commands, or dictation.
Allow voice dialing - If checked, users can dial their phone using voice commands.
Allow In-App Purchase - If checked, users can make in-app purchases.
Force user to enter iTunes Store password for all purchases - If checked, users are required to enter their Apple ID password before making any purchase. Normally, there’s a brief grace period after a purchase is made before users have to authenticate for subsequent purchases.
Allow multiplayer gaming - If checked, users can play multiplayer games in the Game Center.
Allow adding Game Center friends - If checked, users can add friends in the Game Center.
Force fraud warning - If checked, Safari warns users when visiting websites identified as being fraudulent or compromised.
Enable JavaScript - If checked, Safari executes javascript on websites.
Block pop-ups - If checked, Safari’s pop-up blocking feature is enabled.
Accept cookies - Choose when to accept all cookies: Never, From visited sites,Always.
Allow backup - If checked, users can back up their device to iCloud.
Allow document sync - If checked, users can store documents in iCloud.
Allow Photo Stream (disallowing can cause data loss) - If checked, users can enable Photo Stream.
Allow diagnostic data to be sent to Apple - If checked, iOS diagnostic information is sent to Apple.
Allow user to accept untrusted TLS certificates - If checked, users will be asked if they want to trust certifications that cannot be verified. This setting applies to Safari and to Mail, Contacts, and Calendar accounts.
Force encrypted backups - If unchecked, then in iTunes the user can choose to encrypt or not encrypt a backup from the device to a local machine. If checked, then in iTunes the user is forced to encrypt the backup. When a backup is encrypted, a message box on the device prompts the user to enter an encryption password.
Allow explicit music and podcasts - If checked, explicit music or video content in the iTunes Store is displayed instead of hidden. Explicit content is flagged by content providers, such as record labels, when listed on the iTunes Store.
