The Android Hardware Security Policy prevents hardware and software from accessing data on managed Android devices. Enforcing this type of security can prevent data loss. This policy works for devices running Android 5.1 and later.
- JumpCloud’s Android EMM is configured for your organization. See Set Up Android EMM.
- Your Android devices are enrolled in EMM. See Add and Manage Android Devices and Users: Enroll Your Personal Android Device.
To create an Android Hardware Security policy:
- Log in to the JumpCloud Admin Portal: https://console.jumpcloud.com/login.
- Go to DEVICE MANAGEMENT > Policy Management.
- In the All tab, click (+).
- On the New Policy panel, select the Android tab.
- Select the Hardware Security policy from the list, then click configure.
- On the New Policy panel, optionally enter a new name for the policy, or keep the default. Policy names must be unique.
- For Policy Notes, enter details like when you created the policy, where you tested it, and where you deployed it.
- Under Settings, select Disable External Media to block users from mounting any physical external media, such as a storage device.
- Select Disable Data Sharing to prevent users from sharing data between Android devices with Near Field Communication (NFC) Beam.
Android Beam has been discontinued.
- Select Disable File Transfer to prevent users from transferring files over USB.
- (Optional) Select the Device Groups tab. Select one or more device groups where you will apply this policy. For device groups with multiple OS member types, the policy is applied only to the supported OS.
- (Optional) Select the Devices tab. Select one or more devices where you will apply this policy.
For this policy to take effect, you must specify a device or a device group in Step 11 or Step 12.
- Click save.