Configuring a strong unlock password for EAS devices
Set a strong unlock password to protect EAS device data.
By default, when a mobile device is powered on, Kaspersky Device Management for iOS does not prompt the user to enter or set an unlock password.
To configure the strength settings for an EAS device unlock password:
- In the console tree, in the Managed devices folder, select the administration group to which the EAS devices belong.
- In the workspace of the group, select the Policies tab.
- Open the policy properties window by double-clicking.
- In the policy Properties window, select the Password section.
- In the Password settings section, select the Prompt for password check box.
- Configure unlock password strength settings:
- To require the user to use both letters and numbers in the password, select the Prompt for alphanumeric value check box. In the Minimum number of character sets field, specify the strength level of the alphanumeric password. Possible values: 1 to 4. The value "1" corresponds to the lowest strength level.
- To allow the user to use the password recovery function, select the Enable password recovery check box.
- If you want files to be encrypted in the device memory, select the Require encryption on the device check box.
- If you want files to be encrypted on the memory card, select the Require encryption on the memory card check box.
- To allow the user to use a simple password that consists of numbers only, select the Allow simple password check box.
- To limit the number of attempts to enter the password for accessing the device, select the Maximum number of access attempts check box. In the field on the right of the check box, specify the number of password entry attempts that the user can make to unlock device. If the user has failed to enter the correct password after the specified number of attempts in a row, Kaspersky Device Management for iOS wipes all device data.
- To specify the minimum length of the user password, select the Minimum password length check box. Specify the minimum number of password characters in the field on the right of the check box. Possible values: 4 to 16 characters.
- To prompt the user to enter the password after the device has been idle for some time, select the Idle time until new attempt of password entering (min) check box. In the field on the right of the check box, specify the idle time in minutes. When this time elapses, the application prompts the user to enter the password.
- To limit the password validity period, select the Password validity period (days) check box. In the field to the right of the check box, specify the password validity period. When this period elapses, the application prompts the user to change the password.
- In the Password history field, specify the number of the most recent old passwords that cannot be reused.
- Click the Apply button to save the changes you have made.
Mobile device settings are configured after the next device synchronization with the Kaspersky Security Center. Once the policy is applied, Kaspersky Device Management for iOS checks if a password is set on the user's mobile device. If the unlock password has not be set on the device, the user is prompted to set it. The password should be set taking into account the policy settings. If the device unlock password is set but does not conform to the policy, the user is prompted to change the password.
