There are two mobile security policies. To access these policies, click admin in the console then click policies. In the Manage Policies page, select the policy set you wish to view or modify by clicking its name. In the Manage Policy Set page, expand Mobile then expand Security.
Both policies are applicable only for Android app 3.0 or higher and iOS app 3.0 or higher.
Mobile passcode enforcement policy
The default setting does not require users on mobile devices to enter a passcode when accessing the Syncplicity app, but it does not prevent users from setting their own passcodes locally on their devices. This allows for the most flexibility as an end user but introduces the ability for unintended access to sensitive corporate information.
For security, you can require that users enter a passcode whenever they access the Syncplicity app. This is an added protection against lost or stolen devices. Once you enable this setting, you have following options:
- You can automatically remote wipe all user data from the Syncplicity app on the device should a user enter a specific number of incorrect passcodes consecutively. If this option is not checked, user data is not wiped regardless of the number of failed attempts.
- You can require mobile users to enter the passcode only after a specified period of time has elapsed since they last entered the passcode. This avoids requiring end users who send the Syncplicity app to the background from having to re-enter the passcode every time they bring the app back to the foreground. If this option is not checked, users are not prompted to enter a passcode after a specific amount of time, but they do have to re-enter the passcode when bringing the Syncplicity app from the background to the foreground.
If you are using an MDM, such as AirWatch or MobileIron, to manage the mobile devices, you should disable the mobile passcode enforcement policy or set the remote wipe and re-enter values to be greater than the ones set in the MDM system.
Open-in restriction policy
By default, users on mobile devices can open files in third party applications installed on their mobile devices. This allows for the most flexibility as an end user but introduces the ability for data leakage to occur. For extra security and safety, disallow this feature and require that Syncplicity mobile clients disallow opening files in third party applications. In addition, the open-in policy also prevents users from opening Syncplicity content while within another app, such as the Microsoft Office apps.
This policy also controls integration with external applications, such as the iOS Files app and Microsoft Office apps.
This policy does not apply when users upload content into their Syncplicity account from within another app.
The open-in policy does not control features such copy and pasting the content, capturing screen shots or other forms of exporting content. MDM software is required for controlling these types of operations.