options dialog box allows to customize the security features of the
service. By default, when Secure Device is included in the license, it is
automatically activated during installation, with a strong level of security.
If you need to change those parameters, use that dialog box.
- Enforce SSL.
Forces devices to communicate by using an SSL transport. All HTTP (unsecure)
requests from devices will be rejected.
Authentication. Enables strong authentication by generating a
Strong ID for devices that is then used as a second method of authentication
during the enrollment process.
- Strong ID Valid
Once. Allows Strong ID passcodes to only be used once. When the
Strong ID is used once to generate a device certificate, it cannot be reused.
The device has to be revoked and re-authorized.
Renewal. Sets the renewal time for certificates used in Strong
Authentication mode. A setting of zero disables the certificate renewal
- Always Add
Device. Registers devices automatically into Device Manager even
when Secure Device is activated.
- Block Rooted Android and
iOS Enrollment. Enabling this function blocks rooted or jailbroken
devices from enrolling.
- 8 Char Strong
ID. Enables a Strong ID character string that is limited to 8
- Enable SHP Console for
Users. Enables or disables the Self-Help Console for user
management of devices.
- XDM/SHP console max
inactive interval. The time (in minutes) between client requests
before the server invalidates a log on session. If you set the value to zero,
log on sessions do not timeout. For example, if the console max timeout value
is set to 1 (one minute) and a user logs on and does not interact with the UI
for over one minute, then the user is logged off. The console might still
appear as if the user is logged on until the user attempts to interact with the
UI, but then the console will be refreshed and the user will see the log on
- iOS agent auto logout
(minutes). Length of time before an iOS agent user is logged off
due to inactivity.
- Enable client cert
authentication for iOS. If enabled, iOS enrollment agent uses
certificate authentication. If disabled, iOS enrollment agent uses