COMP-DV04: Android Enterprise (Personally-owned work profile) Secure Device Compliance


This policy checks Android Enterprise (Personally-owned work profile) devices are not Rooted, a passcode has been set and the maximum amount of time inactivity before the device locks itself is set to 15 minutes. It will also disable the ability to perform USB debugging on the device.

Policy Settings

Device Health

Rooted devicesBlock

System Security

Require a password to unlock mobile devicesRequire
Maximum minutes of inactivity before password is required15 Minutes
Require encryption of data storage on deviceRequire
Block apps from unknown sourcesBlock
Company Portal app runtime integrityRequire
Block USB debugging on deviceBlock

Actions for Non-Compliance

Mark device noncompliantImmediately


Users, Groups and Devices

Includes– All Users

Get Started!

The first three tenants are free! No credit card required.

Sign Up