This feature availability depends on your plan.
Remote Device Management allows users to remotely manage their ActiveSync devices. You can set custom account-wide policies or apply custom policies for selected users. You can assign policy rules to satisfy your organization's security policy requirements and to reflect the needs of the users who are assigned to that policy.
- The ActiveSync Policies feature must be enabled on the plan in order to customize policies for users.
- Only the account owner or Technical Administrator with access to Exchange and Wireless modules will be able to manage policies.
- Notifications regarding enabling a custom policy will be sent to the account owner and Technical Administrator and to users when a custom policy is assigned or unassigned.
Read the Knowledge Base article on Account contacts and contact roles for more information on the account owner and Technical Administrator.
To create and assign a custom policy:
- Log in to CONTROL PANEL and navigate to Services > Compliance > Policies.
- Choose the ActiveSync Policy tab > ActiveSync Policies.
- Add the policy by clicking Add custom ActiveSync policy button:
- Name and customize the policy. For detailed descriptions of settings, see the description of policies below.
- Click Add Policy at the bottom of the page:
- Once the policy is created you will be redirected to the Users Assigned tab to assign policy:
- You can change the default policy by clicking Set as default button:
The settings are organized into the following groups: Security Settings, Messaging Settings, Hardware Settings and Software Settings.
- Device Password Enabled. When this box is checked, the user must set a password for the device.
- Allow Simple Device Password. This setting determines whether a simple device password is allowed. A simple device password is a password that has a specific pattern, such as 1111 or 1234.
- Require Device Encryption. This parameter specifies whether encryption is required on the device.
- Alphanumeric Device Password Required. This setting specifies that the device password must be alphanumeric (a mix of letters and numbers).
- Require Storage Card Encryption. This setting determines whether encryption of the device's storage card is required.
- Password Recovery Enabled. When this box is checked, you can store the recovery password for the device on the Exchange server. The recovery password can be viewed from Outlook Web Access. Important: the recovery password is only available in OWA in Exchange 2010.
- Require Manual Sync When Roaming. When this box is checked, the device must switch to manual synchronization while roaming.
- Device Password History. This setting specifies the number of previously-used passwords to store. When a user creates a new password, the user cannot reuse a stored password that was previously used.
- Min Device Password Complex Characters. This setting specifies the minimum number of complex characters required in a device password. A complex character is not a letter.
- Min Device Password Length. This setting specifies the minimum number of characters in the device password. You can enter any number between 1 and 16. The maximum length a password can be is 16 characters.
- Max Device Password Failed Attempts. This setting specifies the number of attempts a user can make to enter the correct password for the device. You can enter any number between 4 and 16. The device is automatically reset to factory defaults after the specified number of unsuccessful attempts.
- Device Password Expiration. This setting specifies the number of days that a password can be used. After this number of days, a new password must be created.
- Max Inactivity Time Device Lock. This parameter specifies the length of time that the device can be inactive before the password is required to reactivate the device. You can enter any interval between 1 minute and 1 hour. The default value is 1 minute. The format of the parameter is numeral.
- Allow Text Messaging. When this box is checked, text messaging is allowed from the device. When unchecked, text messaging is blocked.
- Attachments Enabled. When this box is checked, the user can download message attachments to the device. When unchecked, attachments are blocked.
- Max Attachment Size. This setting limits the maximum size of attachments that can be downloaded to the mobile device.
- Max Email Age Filter. This setting determines how many days' worth of email items can be synchronized to the device.
- Max Email Body Truncation Size. This setting limits the maximum size
foremail messages that are synchronized to the device. Messages longer than this are truncated on the device.
- Max Calendar Age Filter. This setting limits the maximum range of calendar days that can be synchronized to the device.
- Max Email HTML Body Truncation Size. This setting limits the maximum size for HTML-formatted email messages that are synchronized to the device. HTML-formatted messages longer than this are truncated on the device.
If you need to remove an ActiveSync device, you may refer to this article ActiveSync Best Practices.