Manage security settings using TinyMDM

How to manage device security challenge settings (safe passwords)?

Passcodes ensure the protection of the files and information on a device. Their restriction should force users to choose a strong passcode and change it regularly, improving the security. Using TinyMDM, you can force users to choose a certain type of password and change it regularly, improving the safety of your fleet.

To manage passwords:

Log into your console and go on to the Policies tab. Select the policy you want to modify or create a new one, and then under Device security policy, define specific settings for your passwords:

✔ password quality
✔ password timeout
✔ password minimum size
✔ the number of time before an old password can be reused to access the device or the work profile
✔ the maximum number of incorrect password entries before a factory reset

security_settings

PASSWORD QUALITY

Any password, pattern or PIN

End user will be able to choose between a password, a pattern or a PIN code, compliant with the minimum size required

Only password or PIN

End user will have to choose between a password and a PIN code, compliant with the minimum size required

Only password or complex PIN

End user will have to choose between a password and a complex PIN code (no repeating or consecutive numbers), compliant with the minimum size required

Only password

End user will have to choose a password compliant with the minimum size required

Only complex password

End user will have to choose a password combining letters and numeric characters, compliant with the minimum size required

Only secure password

End user will have to choose a password combining letters, numeric and special characters, compliant with the minimum size required.

PASSWORD MINIMUM SIZE

No minimum size required

End user will be able to choose the password lenght (not recommended)

Minimum size:

End user will have to setup a password with a minimum lenght: 6, 8, 10, 12, 14 or 16 characters, depending on the password quality.

PASSWORD TIMEOUT

Unlimited

End user won’t have to change their password in the future (except if the password quality or lenght is updated and their password is no longer compliant with the policy)

Limited

End user will have to renew their password after: 7 days, 1 month, 3 months, 6 months or 1 year.

MAXIMUM NUMBER OF INCORRECT PASSWORD ENTRIES

Illimited

The user will be able to try an unlimited number of times a wrong password and it will not impact his device

Maximum size:

The user will have 5, 10 or 15 attempts to enter the password. If he enters too many incorrect passwords, the device will be reset to the factory settings.

Info: The first password is only for Fully Managed devices, and enable to unlock the screen.
The second one is to access the business folder in a Work Profile mode.