Android Template

The Android Template consists following policies:

1. Anti-Virus Policy
2. Call and SMS Filter Policy
3. Web and Application Control
4. App specific network blocking
5. Anti-Theft Policy
6. Additional Settings Policy
7. Password Policy
8. Device Oriented Policy
9. Required Applications Policy
10. Wi-Fi Settings Policy
11. Scheduled Backup (Contacts & SMS)
12. Content Library Policy
13. Kiosk Mode Policy
14. Location Fence

Anti-Virus Policy

Anti-Virus Policy lets you scan the device, schedule a scan and update the virus signature database as per your requirement.

Scan Settings

Using the options present under the Anti-Virus Policy, the administrator can define settings for enabling or disabling virus protection on devices along with settings for file types to be scanned on managed devices.

Protection Scanning for files on installation is enabled

Select Enabled or Disabled to enable or disable protection on managed devices in the group.

Automatic Scan

Use options present under the Anti-Virus Policy to scan devices on startup or schedule the scan as per requirement.

Startup Scan

Select from drop-down to enable or disable scanning on device startup, as per your requirement.

Schedule Scan

Select a schedule to scan managed devices. You can conduct a weekly or daily scan as required or even disable the scan schedules.

Scan Day

Select a particular day of the week to scan the managed devices present in the group. This check box will be activated only if you select weekly scan.

Select Scan Time

Set time for scanning the managed devices in the group.

Schedule Update Settings

Define settings for updating eScan on managed devices.

Schedule Update

Define a schedule to update virus signature database on a daily or weekly basis or disable the update schedule.

Update Day

Select a particular day of the week to update the managed devices present in the group. This check box will be activated only if you select weekly update.

Update Time

Set time for the devices to take virus signature database update from the server. It will be helpful in saving network congestion where large numbers of devices are added in the MDM Server.

Update from Internet server

Select this check box to update the virus signature database from the Internet server.

Update only if Wi-Fi is available

Select this check box to update virus signature database only if the Wi-Fi connection is available.

Call & SMS Filter Policy

The Call & SMS Filter Policy lets you set filter for incoming calls, text messages and outgoing calls on managed devices.

Call and SMS filter mode set to Off

If the Call and SMS filter mode is set to Off, all calls and text messages will be allowed.

Call and SMS filter mode set to Blacklist

1. Select Block Non-Numeric SMS and Calls check box to block SMS and calls from non-numeric numbers.
2. To block incoming calls from known numbers and SMS consisting specific keywords, click on Blacklist.
   Call and SMS Blacklist window appears.
3. Click on Add.
   Block Incoming window appears.
4. Select whether to block SMS, Calls or both Calls & SMS. Enter the Blocked Phone Number and Forbidden Text in the fields and then click on Add.
5. To delete a specific number from the Blacklist, select the number and click on Delete.

The selected number will be deleted.

Call and SMS filter mode set to Whitelist

1. Check Allow Contacts check box and then click on Whitelist.
2. Call and SMS Whitelist window appears.
3. Click on Add.
   Allow Incoming window appears.
4. Select whether to allow SMS, Calls or both Calls & SMS. Enter the Allowed Phone Number and Forbidden Text in the fields and then click on Add.
5. To delete a specific number from whitelist, select the number and click on Delete.

The number will be deleted. To remove all numbers in a single-click, click on Remove All.

Call and SMS filter mode set to Both List

Check Allow Contacts and Block Non-Numeric SMS and Calls and you will be able to access both Blacklist’s and Whitelist’s features.

Call Filter (Outgoing) Mode set to Off

If Call Filter Mode is set to Off, all outgoing calls will be allowed.

Call Filter (Outgoing) Mode set to Whitelist

If Call Filter Mode is set to Whitelist, a user can make outgoing calls only to whitelisted numbers.

1. Click on Whitelist.
   Outgoing calls window appears.
2. Click Add.
   Allow outgoing window appears.
3. Enter the phone number and then click on Add.
4. The number will be added to the Whitelist.
5. To delete a specific number, select a number and then click on Delete.
   The number will be deleted.

Web and Application Control

Web and Application Control policy lets you allow and block applications and websites on managed devices.

Control Mode

Allow or Block Applications/Website or Both or Off based on your requirement and Policies.

Control mode set to Off

If the Control Mode is set to Off, you cannot allow/block websites or applications.

Control mode set to Website

Setting the Control Mode to Website lets you allow and block website categories.

Allow List : Websites added to this list can be accessed in browser. You can modify, delete and also remove the list of websites.

Click on Add. Add in allow list window appears.

Enter the URL in the field and then click on Save.

Block List:Websites added to this list will be blocked in browser. You can modify, delete and remove the list of websites from the Block List.

Click on Add. Add in block list window appears.

Enter the URL and then click on Save.

Control mode set to Application

Setting the Control Mode to Application lets you allow or block an application.

Click on Allow/Block Application List. Allow/Block Application List window appears.

Click on Add.

Application List

1. Applications added to this list will be allowed/blocked as per the specified action.
2. System applications will be allowed by default unless explicitly added to "Block" section.
3. User installed applications will be blocked by default unless explicitly added to "Allow" section.
4. If the action is set to "Ask Uninstall" the device will prompt the user to uninstall the application and will remain "Non-Compliant" until the application is uninstalled.
5. If “Ask Uninstall” action is set for the system applications, the applications will be blocked and will have no effect on the device compliance.

NOTE	If Application is NOT in the "Available Applications" list you can add the package name with the "Enter Package Name" option.

Enter the application’s package name in the field. Select whether to Allow, Block or Ask to Uninstall the specific application and then click on Add > Save.

Control mode set to Both

Setting the Control Mode to Both lets you allow/block website categories and applications.

App Specific Network Blocking

The App Specific Network Blocking Policy lets you block a particular application from accessing the Internet.

In the Enter Package Name field, type the application’s package name and then click on Add.

The package will be added and displayed in Package Name section below.

After a package is added, the respective application will be unable to access the Internet.

NOTE	VPN permission is needed for this functionality to work.

To delete a package from the list, select the specific package and then click on Delete.

To remove all packages, click on Remove All.

Anti-Theft Policy

Anti-Theft Policy lets you keep track of a device’s location history, block a device and send alert about SIM card change.

Enable Anti-Theft

By default, this check box is selected.

Enable Location History

Select this check box to track the location history.

NOTE	Location coordinates will be captured by the device only during the selected time slots.

Interval in Mins

Track the location history at a defined interval.

You can set the interval using Interval field.

Show GPS alert block screen

Select this checkbox to show the GPS alert and lock the screen.

NOTE	Screen Overlay permission should be enabled on the device in order to work.

Block Device

Select this option if you want the device to be blocked if a user tries to uninstall the MDM application.

Ask "Admin Access Password" (Do not block device)

Select this option if you don’t want the device to be blocked if a user tries to uninstall the MDM application. The application will ask the user to enter the Admin Access Password.

Delete all configured email accounts

Select this check box to delete all email accounts configured on the managed device.

Delete specific domain account

Select this check box to delete email accounts of specific domain. After selecting this check box, enter the domain name in Enter domain names field.

Send SMS notification on SIM card change

Select this check box to receive a text message informing about SIM card change. The text message will be sent to the number added by you.

Add the desired number in To Mobile No text box.

Send Email notification on SIM card change

Select this check box to receive an email informing about SIM card change. The notification email will be sent to the administrator’s email ID or the custom email ID that the administrator has specified.

Additional Settings Policy

Use this option to enable or disable the above options on selected managed devices.

Show Notification

Selecting this check box will display all notifications on devices.

Sound

Selecting this check box will play notification sound for eScan MDM application events.

Write Logs

Selecting this check box will enable MDM application to write logs of user actions on the eScan log file.

Sync at Device Reboot

Selecting this check box will sync the device with the eScan server after it reboots.

Sync Frequency

You can set the Sync Frequency in minutes and let the device sync with the eScan server.

Password Policy

Password Policy lets you define Administrator Access Password that allows an authorized user to configure settings of eScan Module on respective Managed devices.

Enter the password in Admin Access Password field.

NOTE	The password should be numeric and minimum of four digits are required.

Device Oriented Policy

Device Oriented Policy lets you enable GPS and disable Camera, Bluetooth and USB Connectivity on a device.

Enable GPS (For devices with Android version below 4.0)

Select this check box to enable GPS.

Disable Device Settings

Select this checkbox to block the access to Android Settings.

NOTE	This option to work, Web And Application Control Mode should be set to Both/Application.

Disable Camera (For device with Android version 4.0 and Above)

Select this check box to disable the camera.

Disable Bluetooth & Bluetooth Discovery

Select this check box to disable the Bluetooth and Bluetooth discoveries.

Disable USB Connectivity (For devices with Android version below 4.0)

Select this check box to disable USB Connectivity.

Send Call Details to server, including Call/SMS filter events

Select this check box if you want device(s) to send their Call/SMS details to the server.

Required Applications Policy

The Required Applications Policy lets you import applications from the App Store module for installation on devices in the group through policy deployment.

Importing an application

1. Click on Import.
   Import Application window appears.
2. Select the application(s).
3. Click on Save.
   The selected application will be imported.

A pop-up message appears displaying Applications added to the "Require Applications Policy" will be automatically added to the "Allow List" under "Parental Policy >> Allow/Block Application List".

Click on Deploy. The policy will be deployed on the device instantly if the device is connected to the Internet. The following prompt appears after the successful policy deployment.

NOTE

If the device is not connected to Internet, the policy changes will be applied on the next sync with the server. By default, the device(s) sync with the server every 60 minutes. If an application is deployed via the Required Application Policy, the device(s) in the group receive a notification to install the application. The user will be provided with the option to start the installation process and install the application. If the device user cancels the installation, it will alert the user about application installation on the next sync with the server. If the deployed application with the same version number already exists on device, the device user won't receive notification.

Deleting an application from “Required Applications Policy”

To delete an application, select the application and then click on Delete. The selected application will be deleted.

Wi-Fi Settings Policy

The Wi-Fi Settings policy lets you define the settings for your Wi-Fi connections. You can disable WLAN/Wi-Fi or restrict the usage of Wi-Fi by allowing the device to connect only to the listed Wi-Fi networks. The device can be automatically locked or raise a sound alarm if it is not connected to any of the listed Wi-Fi connections.

Enable Wi-Fi Restrictions (For devices with Android version below 6.0)

Select this check box to allow device to connect ONLY to the listed WiFi network name (SSIDs). This option is available only for devices with Android version below 6.0.

Adding a Wi-Fi SSID

1. Select the check box Enable Wi-Fi Restrictions and then click on Add. Add window appears.
2. Enter the Wi-Fi network name (SSID) in the field and then click on Add. The Wi-Fi network will be added to the console.

The devices will be allowed to connect only to the added Wi-Fi network SSID.

Locking/Sounding alarm on a device

1. Select the check boxes Lock Device orSound Alarm as per your requirement and then click on Add. Add Networks window appears.
2. Select the Wi-Fi networks you want the device to always be connected to and then click on Save.

If the devices are not connected/disconnected from the added Wi-Fi network SSID, they will be locked or raise a loud alarm as per the policy configuration.

Deleting a Wi-Fi network SSID

1. Select a Wi-Fi network SSID and then click on Delete. A confirmation prompt appears.
2. Click on OK. The Wi-Fi network SSID will be deleted.

Scheduled Backup (Contacts & SMS)

The Schedule Backup policy lets you take a backup of all the contacts and text messages on a device as per your requirements. The backup of contacts and text messages can be saved in two different folders. The backup can be scheduled for daily/weekly basis.

Creating a schedule

1. Click on Add. Add new job window appears.
2. Enter a job name.
3. In Job Settings, select the preferred backup(s).
4. In Job Scheduler Settings, select whether you want to take a backup daily or weekly.

Set the specific time at which you want to take the backup and then click on Save.

Modifying a schedule

1. To modify a schedule, select the specific schedule and then click on Modify. Modify backup job window appears.
2. Make the required changes and then click on Save. The schedule will be modified.

As an Administrator, you can even disable a scheduled backup by selecting the option Disable schedule > Save.

Deleting a schedule

To delete a schedule, follow the steps given below:

1. Select a schedule and then click on Delete. A confirmation prompt appears.
2. Click on OK. The schedule will be deleted.

Content Library Policy

Content Library policy lets you deploy documents to the users’ devices. The documents can be imported from the Content Library module and deployed to the users.

Import a file

To import a file from Content Library, click on Import. Select the file and then click on Save.

To delete a file, select the specific file and then click on Delete.

Kiosk Mode Policy

To configure Kiosk Mode Policy, select Enable Kiosk Mode check box.

NOTE	Kiosk Mode supports android version 6.0 above.

Application(s) to be added to Kiosk

This section allows an application to be accessed in Kiosk mode.

Use Single App Mode

Select this check box to use kiosk in single app mode. The Kiosk Mode Policy lets you run a device in Single App Mode wherein the device will run only one app even if multiple apps are installed. The device user will be unable exit the application or perform other device activities.
It also provides another option wherein the dropdown menu displays a list of installed applications. Select an application and then click on Add. The application will be added.
To delete the added application(s) from Kiosk mode, select the application(s) and then click on Delete. The application will be deleted.

Force user to install all apps as required by Kiosk policy

If this option is checked, the user will not be allowed to enter the Kiosk mode unless all the listed apps are installed on the device.

NOTE	Unchecking Force user to install all apps as required by Kiosk policy option will allow user to enter Kiosk mode even if any of the app is not installed.

Whitelist for apps

This section lets you to whitelist the apps.

Add

Enter the name of the package and click on Add to whitelist the particular app.

Allow all non-launchable system apps

Select this check box if you want to allow the non-launchable system apps to launch from within any other app added to Kiosk mode.

NOTE	All non-launchable system apps will be allowed if launched from within any other app added to Kiosk mode.

Hardware Key Control

Kiosk mode also lets you disable a device’s hardware keys.

Disable Power button– Selecting this check box disables a device’s Power button.

Disable Volume buttons– Selecting this check box disables a device’s Volume buttons.

Allow User to Turn ON/OFF

Wi-Fi– Selecting this check box allows a user to turn device’s Wi-Fi ON/OFF through Kiosk application.

Bluetooth– Selecting this check box allows a user to turn device’s Bluetooth ON/OFF through Kiosk application.

Volume– Selecting this check box allows a user to increase/decrease the device’s volume through Kiosk application.

Brightness– Selecting this check box allows a user to increase/decrease the device’s brightness through Kiosk application.

NOTE	Unchecking options won’t display Control to the user on the Kiosk application.

Allow Wi-Fi setting– Selecting this check box allows user to access and configure the Wi-Fi settings in the Kiosk mode.

Allow device setting– Selecting this check box allows user to access and configure the device settings in the Kiosk mode.

Install eScan Kiosk Lockdown Application

To run the eScan Kiosk Lockdown application in your device, it is necessary that you have installed eScan Device Management application and your device is enrolled in eScan Mobility Management console. Also, ensure that the Kiosk Mode Policy is deployed to the device via the console.

NOTE	The below screenshots are taken from Android 10 on dark theme. The app permissions, screens and text may vary depending upon the android version, applied theme and device manufacturer.

After the app has been downloaded on device, follow the below given installation procedure.
Installation prompt appears.

1. Tap on INSTALL.
2. After the application gets installed, tap on OPEN.
   After opening the app, Welcome screen appears with End User License Agreement (EULA).
3. Tap on OPEN AGREEMENT. Read the EULA carefully and then tap on ACCEPT.
4. You will have to grant permissions to the app manually. Tap on Permit Drawing Over Other Apps.

Tapping the displayed options will take you to the respective options in Settings, wherein you will have to tap the toggle button to grant all requested permissions.

NOTE	The app permissions may vary depending upon the android version and device manufacturer.

5. Tap the Allow display over other apps toggle and then go back.

6. Tap on App Usage Access.

7. Tap on eScan Kiosk Lockdown.

8. Tap on Permit usage access toggle and then go back.

NOTE	The option Permission usage access maybe Allow usage tracking in your device. This option may vary depending upon the device manufacturer/android version.

9. Tap on Write Setting Permission.
Modify system settings screen appears.

10. Tap on Allow modifying system settings toggle and then go back.

11. Tap on Allow to write DND setting.
Do Not Disturb access screen appears.

12. Tap on eScan Kiosk Lockdown.

13. Tap on Allow Do Not Disturb toggle.
A prompt appears.

14. Tap on ALLOW and then go back.

15. Tap on Device Admin Permission.
Activate device admin app screen appears.

16. Tap on Activate this device admin app option and then go back.

17. Tap on Allow app installation permission.
Install unknown apps screen appears.

18. Tap on Allow from this source toggle and then go back.
After all permissions are granted, an instructional image appears.

19. Read the instructions in the image and then tap on OK, GOT IT!

20. The application asks you to use eScan Kiosk Lockdown as Home App. Tap on ALWAYS.

The device now runs in Kiosk mode and only the apps deployed via Kiosk Mode Policy are visible.

NOTE	The above image is for representational purposes only.

Tapping the bell icon displays notifications related to Kiosk application. For example, application updates if any available. If an update for application is available, the user will be redirected to Google Play and install updates manually.
Tapping the menu icon displays general info and configuration menu.
The menu options are explained below:

Kiosk Policy Compliance
It displays:

Policy applied date, day and time

Applications deployed via Kiosk Mode Policy and their package name

App Store
It displays the applications deployed via Kiosk Mode Policy but not yet installed on device. Tap the application to download and install it on your device.

Control Panel
It displays the Brightness, Volume, Bluetooth and Wi-Fi controls. Brightness control lets user set the display brightness to Low, Medium or High. Volume control lets the user set the device volume to Mute, Normal or Vibrate. Bluetooth and Wi-Fi control allows user to switch them ON and OFF.

Sync with Server
It lets user sync the device with server and comply device with the latest updated policy.

MDM Info
It displays the eScan MDM details such as Mobile Number, Server Name, Install and Expiry date, Last sync date and time details and MDM version number in use.

About eScan Kiosk
It displays general information about the Kiosk application, developer information and copyrights notice.

Exit Kiosk
This option allows device user to exit Kiosk mode by entering the Admin Password.

Location Fencing

The Location Fencing feature allows to define an address on the map and set the radius around that address. If the device is in that region, then the policy set by the administrator will be active on the device.
To configure Location Fencing policy, enable Geo Fencing option. After enabling this option, you can import the fencing locations. Click on Import option to select and import the custom location.

Block device when outside of the set fence
Select this check box to block the device when it is outside the set fencing location.

NOTE	If Block device when outside of the set fence is unchecked then device will not be blocked but only events will be sent to the server.

iOS Template

The iOS Template consists following policies:

1. Device Passcode Policy
2. Restrictions Policy
3. Web Clip Policy
4. Email Policy
5. Wi-Fi Settings Policy
6. Content Library Policy
7. Required Applications Policy

Device Passcode Policy

The Device Passcode Policy lets you configure the passcode, auto-lock duration, device lock grace period and data wipe in case of maximum passcode fail attempts.

Select the Enable check box to enable all the fields in this section.

You can set the Device passcode policy for the device using this policy.

Allow Simple Value:
Set this option to Yes, if the passcode should be simple value. For example, 1234 or 0000

Require Alphanumeric Value:
Set this option to Yes, if the passcode should be alphanumeric. For example, abc123 or 123abc

Minimum Passcode Length:
This option lets you set the minimum passcode length. The numeric value can be set between 1 and 16.

Minimum Number of Special characters:
This option lets you set the count of special characters required to construct a passcode. The count for special characters in passcode can be set between 1 and 4.

Maximum Passcode Age (days 1-730, or blank):
This option lets you set the maximum number of days from 1 to 730 before the password expires and asks the user to set a new one.

Allowed idle time, before Auto-Lock:
This option lets you set time for a device (in minutes), before it gets auto-locked.

Number of Passcodes to be maintained in the history (1-50, or blank):
This option lets you set the number of passcodes to be maintained in the history.

Grace Period for Device Lock:
Grace period is a time duration that ensures the device stays locked until the next passcode entry. This option lets you set the grace period for a device from 1 Minute to 4 Hours.

Maximum Number of Failed Attempts (Before all data is erased):
This option lets you set the maximum number of failed attempts allowed for unlocking a device before all data on the device is erased.

Restrictions Policy

The Restrictions Policy lets you apply restrictions on a device.

• Device Functionality

• Application

• Safari Settings

• iCloud

• Security and Privacy

• Content Ratings

• Ratings by Region

Device Functionality

Allow Installing Apps: Set this option to Yes to allow users to install applications.

Allow Use of Camera: Set this option to Yes to allow users to access device’s camera.

Allow FaceTime: Set this option to Yes to allow users to access FaceTime.

Allow Screen Capture: Set this option to Yes to allow users to take a screenshot or record their screen.

Allow Siri: Set this option to Yes to allow users to use Siri.

Allow Siri while the device is locked: Set this option to Yes to allow users to use Siri while the device is locked.

Allow usage of Touch ID to unlock device (iOS 7 and above): Set this option to Yes to allow users to unlock their devices with Touch ID.

Allow Apple Wallet while the device is locked (iOS 6 and above): Set this option to Yes to allow use of Apple Wallet while the device is locked.

Show Control Center in lock screen (iOS 7 and above): Set this option to Yes to allow users to access Control Center in the lock screen.

Show Notification Center in lock screen (iOS 7 and above): Notification Center is a feature in iOS that provides an overview of application notifications. Set this option to Yes to allow users to view Notification Center in lock screen.

Show Today view in lock screen (iOS 7 and above): Set this option to Yes to allow users to view Today View in lock screen.

Allow Voice Dialing: Set this option to Yes to allow users to call their contacts via voice.

Allow In - App Purchase: Set this option to Yes to allow users to make in-app purchases.

Force User to enter iTunes Store password: Set this option to Yes to force a user to enter their iTunes Store password.

Allow Multiplayer Gaming: Set this option to Yes to allow a user to play a multiplayer game on their device.

Allow Adding Game Center Friends: Set this option to Yes to allow a user to add Game Center friends.

Application

Allow Use of YouTube: Set this option to Yes to allow users to access YouTube.

Allow Use of iTunes Music Store: Set this option to Yes allow users to access iTunes Music Store.

Allow Use of Safari: Set this option to Yes to allow users to access Safari.

Safari Settings

Enable Autofill: Set this option to Yes if you want Safari to remember the information users entered in the web forms.

Force Fraud Warning: Set this option to Yes if you want Safari to prevent the user from visiting websites identified as being fraudulent or compromised.

Enable JavaScript: Set this option to Yes if you want Safari to accept all JavaScript on websites.

Allow Pop-ups: Set this option to Yes if you want Safari to allow all pop-ups on a website.

Accept Cookies: Select the appropriate option for Safari to accept cookies.

1. Always
2. From Visited Sites
3. Never

iCloud

Allow Backup: Set this option to Yes to allow backup of device data to iCloud.

Allow Document Sync: Set this option to Yes to allow Document Sync on a device.

Allow Photo Stream: Set this option to Yes to allow Photo Stream on a device.

Allow Shared Stream (iOS 6 and above): Set this option to Yes to allow Shared Stream on a device.

Security and Privacy

Allow Diagnostic Data to be sent to Apple (iOS 6 and above): Set this option to Yes to allow a device’s diagnostic data to be sent to Apple servers.

Allow User to accept untrusted TLS Certificates: Set this option to Yes to allow user to accept untrusted TLS Certificates.

Allow automatic updates to certificate trust settings (iOS 7 and above): Set this option to Yes to allow automatic updates to certificate trust settings.

Force Encrypted Backups: Set this option to Yes to force a device to take encrypted backups.

Force limited ad tracking (iOS 7 and above): Set this option to Yes to stop receiving targeted advertisements on a device. This feature does not block ads. The device user may still receive random ads.

Allow documents from managed apps in unmanaged apps (iOS 7 and above): Set this option to Yes to allow documents from managed applications to open in unmanaged applications.

Allow documents from unmanaged apps in managed apps (iOS 7 and above): Set this option to Yes to allow documents from unmanaged applications to open in managed applications.

Content Ratings

Allow Explicit Music Podcasts: Set this option to Yes to allow explicit music podcasts to be played on a device.

Ratings by Region

Enable Ratings by Region: Set this option to Yes to enable content ratings by region.

WebClip Policy

The WebClip policy lets you get important websites on a device’s home screen to let users access it quickly.
Select Enable check box to enable the configuration of Web Clip Policy.

Adding a WebClip

Check Enable and then click on Add. WebClip Policy window appears.

WebClip Label: Enter a name for the WebClip.

URL to be Linked: Enter the website URL.

Removal of WebClip: Set the WebClip status as either Enable or Disable. If enabled, the user can remove the WebClip from the device.

Allow Full Screen: Select Yes to allow full screen and No to disable full screen.

After entering all the details, click on Save. The new web clip policy will be added.

Deleting a WebClip

Select a WebClip and then click on Delete. The WebClip will be deleted.

Email Policy

The Email Policy lets you set up an email account for the managed devices and define the settings for incoming and outgoing emails.

Check Enable and then click on Add.
Email Policy window appears.

Account Name: Enter an account name.

Account Type: Set the Account Type as IMAP or POP.

Choose POP if…

1. You need constant access to your email, regardless of the Internet availability.
2. You have limited server storage.

Choose IMAP if…

1. You have a reliable and active Internet connection.
2. You want to receive a quick overview of new emails on the server.
3. Your local storage space is limited.

Path Prefix: In some cases, it is possible that you will not see the Sent, Trash, Drafts, and Junk folders. Typically, these folders are in your INBOX and you'll have to set a prefix path for it to work correctly.

User Display Name: Type in the prefix "%username%" or "%email%". It will fetch the appropriate Username/Email mapped to the device.

Email Address: Typing in the prefix %email%" will fetch the appropriate email ID mapped to the device.

Allow Move: Select the Yes option to Allow Move. Selecting No will prevent email data from being opened in other applications.

Disable recent mail address sync (iOS 6 and above): Selecting Yes will remove the mailbox from Recents address syncing.

Incoming Mail

Mail Server: Enter the hostname for Incoming Mail Server in this field.

Port: Designates the incoming mail server port number. If no port number is specified, the default port for a given protocol is used.

Username: Add the prefixes “%username%" or "%email%". It will fetch the appropriate Username/Email mapped to the device.

Authentication Type: Select the appropriate authentication type from the following options

1. None
2. Password
3. MD5 Challenge Service-Response
4. NTLM
5. HTTP MD5 Digest

Password: Set a password for incoming emails.

Use SSL: Designates whether or not the incoming mail server uses SSL certificate. Select Yes to allow the mail server to use SSL.

Outgoing Mail

Mail Server: Enter the hostname for outgoing mail server.

Port: Enter the outgoing mail server port number.

Username: Add the prefixes “%username%" or "%email%". It will fetch the appropriate Username/Email mapped to the device.

Authentication Type: Select the appropriate authentication type from the drop-down. Following authentication types are available.

1. None
2. Password
3. MD5 Challenge Service-Response
4. NTLM
5. HTTP MD5 Digest

Password: Set a password for outgoing emails.

Use Outgoing Password Same as Incoming: If you want to use the same password set for the incoming email server, select Yes.

Use Only in Mail: Prohibits sending messages from other applications, such as Safari or Photos. If yes, configured account cannot be selected as default mail account on the device.

Use SSL: Determines whether or not the outgoing mail server uses SSL certificate.

Deleting an Email Policy

To delete an email policy follow below steps:

1. Select the particular Email Policy from the list.
2. Click on Delete.
   The email policy will be deleted.

Wi-Fi Settings Policy

The Wi-Fi Settings Policy lets you manage how a user connects their devices to a Wi-Fi network.
Check Enable to configure the WiFi Setting Policy.

Adding a WiFi Settings Policy

Check Enable and then click on Add.
Wi-Fi Settings Policy window appears.

Enter the following details:

Wireless Network Identification: Enter a name for the Wireless Network Identification.

Automatically Join Network: Set this option to Yes to automatically join a Wi-Fi network.

Hidden Network: Select this option to Yes to add a hidden network.

Security Type: Select a Security type for Wi-Fi network from the following options.

1. None
2. WEP
3. WPA/WPA2
4. Any(Personal)
5. WEP Enterprise
6. WPA/WPA2 Enterprise
7. Any (Enterprise)

Password: Enter the password to connect to the Wi-Fi network.

Configure Proxy: Configure a proxy for Wi-Fi settings by selecting a Wireless Network Identification.

1. None
2. Manual
3. Automatic

After entering the appropriate details, click on Save.

Deleting a WiFi Settings Policy

To delete a WiFi Settings Policy, follow below steps:

1. Select the particular WiFi Settings Policy from the list.
2. Click on Delete.
   The WiFi Settings Policy will be deleted.

Content Library Policy

The Content Library policy lets you share documents with the users. The documents can be imported from the Content Library module and deployed to multiple users at the same time.
Select Enable check box to configure the Content Library Policy.

Importing a file

Check Enable and then click on Import.
Import Files window appears.

Select a file and then click on Save.

Deleting a file

Select a file and then click on Delete.
The file will be deleted.

Required Applications Policy

The Required Applications policy lets you import applications from the App Store module for installation on managed devices in the group through policy deployment.

Importing an application

To import applications from the App Store, follow the steps given below:

1. Select Enable check box and then click on Import.
   Import Application window appears.
2. Select the application(s) to be installed on users’ devices and then click on Save.
   The application(s) will be imported.

Deleting an application

Select an application and then click on Delete.
The selected application will be deleted.