Product Documentation

To add a mail device policy for iOS

Feb 13, 2015
You can add a mail device policy in XenMobile to configure an email account on users' iOS devices.
 
  1. In the XenMobile console, click Configure > Device Policies. The Device Policies page appears.

     

    Select Policies page

     

  2. Click Add to add a new policy. The Add a New Policy dialog box appears.

     

    Select mail device policy

     

  3. Click More and then, under End user, click Mail. The Mail Policy page appears.

     

    Mail device policy information page

     

  4. In the Policy Information pane, enter the following information:
    1. Policy Name: Type a descriptive name for the policy.
    2. Description: Optionally, type a description of the policy.
  5. Click Next. The iOS Platform Information page appears.

     

    iOS mail device policy information page

     

  6. In the iOS Platform Information page, enter the following information:
    1. Account description: Enter an account description that appears in the Mail and Settings apps. This field is required.
    2. Account type: In the list, click either IMAP or POP to select the protocol to be used for user accounts. The default is IMAP. When you select POP, the following Path prefix option disappears.
    3. Path prefix: Enter INBOX or your IMAP mail account path prefix if it is not INBOX. This field is required.
    4. User display name: Enter the full user name to be used for messages and so on. This field is required.
    5. Email address: Enter the full email address for the account. This field is required.

      Incoming email settings
    6. Email server host name: Enter the incoming mail server host name or IP address. This field is required.
    7. Email server port: Enter the incoming mail server port number. The default is 143. This field is required.
    8. User name: Enter the user name for the email account. This name is generally the same as the user's email address up to the @ character. This field is required.
    9. Authentication type: In the list, click to select the authentication type to be used. The default is Password. When None is selected, the following Password field disappears.
    10. Password: Enter an optional password for the incoming mail server.
    11. Use SSL: Select whether the incoming mail server uses Secure Socket Layer authentication. The default is OFF.

      Outgoing email settings
    12. Email server host name: Enter the outgoing mail server host name or IP address. This field is required.
    13. Email server port: Enter the outgoing mail server port number. If not port you do not enter a port number, the default port for the given protocol is used.
    14. User name: Enter the user name for the email account. This is generally the same as the user's email address up to the @ character. This field is required.
    15. Authentication type: In the list, click to select the authentication type to be used. The default is Password. When None is selected, the following Password field disappears.
    16. Password: Enter an optional password for the outgoing mail server.
    17. Outgoing password same as incoming: Select whether the incoming and outgoing passwords are the same. The default is OFF, which means the passwords are different. When set to ON, the preceding Password field disappears.
    18. Use SSL: Select whether the outgoing mail server uses Secure Socket Layer authentication. The default is OFF.

      Policy settings
      Note: The options apply only to iOS 5.0 and later.
    19. Authorize email move between accounts: Select whether to allow users to move email out of this account into another account and to forward and reply from a different account. The default is OFF, which allows users to move emails into another account and to forward or reply from a different account.
    20. Sending email only form mail app: Select whether to restrict users to the iOS mail app for sending email.
    21. Disable mail recents syncing: Select whether to prevent users from syncing recent addresses. The default is OFF. This option applies only to iOS 6.0 and later.
    22. Enable S/MIME: Select whether this account supports S/MIME authentication and encryption. The default is OFF. When set to ON, the following two fields appear.
    23. Signing identity credential: In the list, select the signing credential to be used.
    24. Encryption identity credential: In the list, select the encryption credential to be used.
  7. Under Policy Settings, next to Remove policy, click either Select date or Duration until removal (in days).
  8. If you click Select date, click the calendar to select the specific date for removal.
  9. In the Allow user to remove policy list, click Always, Password required, or Never.
  10. If you click Password required, next to Removal password, type the necessary password.

     

    Policy removal settings

     

  11. Expand Deployment Rules and then configure the following settings: The Base tab appears by default.

     

    Deployment rules

     

    1. In the lists, click options to determine when the policy should be deployed.
      1. You can choose to deploy the policy when all conditions are met or when any conditions are met. The default option is All.
      2. Click New Rule to define the conditions.
      3. In the lists, click the conditions, such as Device ownership and BYOD, as shown in the preceding figure.
      4. Click New Rule again if you want to add more conditions. You can add as many conditions as you would like.
    2. Click the Advanced tab to combine the rules with Boolean options.

       

      Advanced deployment rules with base rules

       

      The conditions you chose on the Base tab appear.
    3. You can use more advanced Boolean logic to combine, edit, or add rules.
      1. Click AND, OR, or NOT.
      2. In the lists that appear, choose the conditions that you want to add to the rule and then click the Plus sign (+) on the right-hand side to add the condition to the rule.

        At any time, you can click to select a condition and then click EDIT to change the condition or Delete to remove the condition.

      3. Click New Rule again if you want to add more conditions.

        In this example, the device ownership must be BYOD, the device local encryption must be True, and the device mobile country code cannot be only Andorra.

        Advanced deployment rules complete

         

  12. Click Next. The Mail Policy assignment page appears.
  13. Next to Choose delivery groups, type to find a delivery group or select a group or groups in the list to which you want to assign the policy. The groups you select appear in the right-hand Delivery groups to receive app assignment list.

     

    Policy assignment page

     

  14. Expand Deployment Schedule and then configure the following settings:
    1. Next to Deploy, click ON to schedule deployment or click OFF to prevent deployment. The default option is ON. If you choose OFF, no other options need to be configured.
    2. Next to Deployment schedule, click Now or Later. The default option is Now.
    3. If you click Later, click the calendar icon and then select the date and time for deployment.
    4. Next to Deployment condition, click On every connection or click Only when previous deployment has failed. The default option is On every connection.
    5. Next to Deploy for always-on connection, click ON or OFF. The default option is OFF.
      Note: This option applies when you have configured the scheduling background deployment key in Settings > Server Properties. The always-on option is not available for iOS devices.
    Note: The deployment schedule you configure is the same for all platforms. Any changes you make apply to all platforms, except for Deploy for always on connection, which does not apply to iOS.

     

    Deployment schedule

     

  15. Click Save to save the policy.