IOS Policy Options

Hello. You have arrived at an outdated topic. Please click this link to be redirected to the updated Endpoint Protection Admin Guide.

Described below are the policy options for iOS devices.

General Tab

The table below describes policy options in the General tab.

Policy Name User-supplied name for this policy.
Description User-supplied description.
Operating System OS of mobile device. Must be iOS.
Protection Tab

The table below describes policy options in the Protection tab.

Require a passcode Select On (default) to require a password to access the device.
Allow simple passcode A simple passcode is one that repeats or uses ascending or descending sequences, such as 111, 123 or abc. Select Yes (default) to allow simple passcodes.
Require at least one letter Select Yes to require that passcodes include at least one alphabetic character. The default is No.
Minimum passcode length

Select the minimum required length of password. Options:

  • 4 - This is the default.
  • 1 through 16
Minimum number of non-alphanumeric characters

Allows you to require one or more special characters such as # or % in the password. Options:

  • None - This is the default.
  • 1 through 4
Require passcode change every__days Type or select a number from 0 to 730 to specify the number of days that a password remains valid, after which the user is prompted for a new password. Zero (0) means the password remains valid indefinitely.
Idle time before automatic device lock

Amount of idle time in minutes before the device is locked and requires a password to unlock. Options:

  • Off
  • 1 - This is the default.
  • 2 minutes
  • 3 minutes
  • 4 minutes
  • 5 minutes
  • 10 minutes
  • 15 minutes
Prevent passcode re-use for    passcodes Select a number from 0 to 50 to specify the number of password changes that must occur before the user can re-use a password. Zero (0) means the user can re-use passwords any time.
After locking, require passcode to unlock device

Select the amount of time that can elapse before a password is required to unlock the device. Options:

  • Immediately
  • 1 minute
  • 5 minute
  • 15 minutes
  • 1 hour
  • 4 hours
Erase device after__failed login attempts

Select an option that enables an automatic erase after the number of failed sign-on attempts. Options:

  • Off means the device will not be erased. This is the default.
  • 4 through 10 mean the device will be erased after that number of failed attempts.