iOS and iPadOS: Security and privacy rules
iOS
and iPadOS
: Security and privacy rulesName | Description | Activation types | Default | Possible values |
|---|---|---|---|---|
Allow users to accept untrusted TLS certificates | Specify whether users are prompted to trust certificates that can't be verified. This rule applies to Safari and to Mail, Contacts, and Calendar accounts. | MDM controls | Selected | |
Force encrypted backups | Specify whether device backups performed in iTunes must be stored in an encrypted format on the computer. Minimum OS version: 8.0.0 |
| Not selected | |
Allow modifying account settings (supervised only) | Specify whether a user can change account settings on an iOS device. If this rule is not selected, users can't create new accounts or change their user name, password, or other settings associated with their accounts. | MDM controls | Selected | |
Allow automatic updates to certificate trust settings | Specify whether an iOS device allows updates for trusted certificates over a wireless connection. | MDM controls | Selected | |
Allow documents from managed sources in unmanaged destinations | Specify whether users can open documents and attachments from managed apps and accounts in personal apps. |
| Selected | |
Allow documents from unmanaged sources in managed destinations | Specify whether users can open documents and attachments from personal apps and accounts in managed apps. |
| Selected | |
Allow copy and paste between documents from managed and unmanaged sources | Specify whether copy and paste of content between documents from managed and unmanaged sources respects the settings for the "Allow documents from managed sources in unmanaged destinations" and "Allow documents from unmanaged sources in managed destinations" rules. For example, if this rule is selected, you can copy from an unmanaged source to a managed destination document, only if documents from unmanaged sources are allowed in managed destinations. Minimum OS version: 15.0.0 | MDM controls | Selected | |
Allow sending diagnostic and usage data to Apple | Specify whether users can choose to send diagnostic and usage data to Apple. |
| Selected | |
Allow Erase All Content and Settings (supervised only) | Specify whether a user can use the "Erase All Content And Settings" option on a device to wipe it. | MDM controls | Selected | |
Allow configuring restrictions (supervised only) | Specify whether a user can use the "Enable Restrictions" option to prevent access to apps or features on a device. On iOS 12 and later, this rule also allows the use of Screen Time. | MDM controls | Selected | |
Allow Handoff | Specify whether a user can use the activity continuation feature to transfer user activities among multiple devices associated with the user. | MDM controls | Selected | |
Allow device name changes (supervised only) | Specify if a user can change the device name. | MDM controls | Selected | |
Require authentication before autofill of sensitive data (supervised only) | Specify whether users must authenticate with the device before Safari and other apps autofill passwords or credit card information. This rule is supported only on devices with Face ID and Touch ID. | MDM controls | Selected | |
Allow automatic setup of new devices (supervised only) | Specify whether the device can be used for automatic setup of a new device. If this rule is not selected, the device doesn't display a prompt to set up new devices that are in proximity. | MDM controls | Selected | |
Allow Mail Privacy Protection (supervised only) | Specify whether mail protection is enabled. Minimum OS version: 15.2.0 | MDM controls | Selected | |
Allow Rapid Security Response Installation (supervised only) | Specify whether rapid security response is enabled. Minimum OS version: 16.0.0 | MDM controls | Selected | |
Allow Rapid Security Response Removal (supervised only) | Specify whether users can disable rapid security response. Minimum OS version: 16.0.0 | MDM controls | Selected | |
Allow writing tools (supervised only) | Allow Apple Intelligence writing tools. Minimum OS version: 18.0 | MDM controls | Selected | |
Allow external intelligence integrations (supervised only) | If false, disables the use of external, cloud-based intelligence services with Siri. Minimum OS version: 18.2 | MDM controls | Selected | |
Allow external intelligence integrations sign-in (supervised only) | If false, forces external intelligence providers into anonymous mode. If a user is already signed in to an external intelligence provider, applying this restriction will cause them to be signed out. Minimum OS version: 18.2 Depends on: Allow external intelligence integrations (supervised only) | MDM controls | Selected | |
Allow use of satellite connectivity (supervised only) | If false, the connection to and use of satellite services is prohibited. Minimum OS version: 18.2 | MDM controls | Selected | |
Allowed External Intelligence Workspace IDs (supervised only) | If present, Apple Intelligence will only allow the given external integration workspace ID to be used, and will require a sign-in in order to make requests; the user will be required to sign in to integrations that support signing in. Minimum OS version: 18.3 | MDM controls | ||
Notes transcription summary (supervised only) | If false, disables transcription summarization in Notes. Minimum OS version: 18.3 | MDM controls | Selected | |
Allow Visual Intelligence Summary (supervised only) | When false, disables visual intelligence summarization. Minimum OS version: 18.3 | MDM controls | Selected | |
Allow Apple Intelligence Report (supervised only) | If false, disables Apple Intelligence report. Minimum OS version: 18.4 | MDM controls | Selected | |
Allow default calling app modification (supervised only) | If false, disables default calling app modification. Minimum OS version: 18.4 | MDM controls | Selected | |
Allow default messaging app modification (supervised only) | If false, disables default messaging app modification. Minimum OS version: 18.4 | MDM controls | Selected | |
Allow Mail smart replies (supervised only) | If false, disables mail smart replies. Minimum OS version: 18.4 | MDM controls | Selected | |
Allow Notes transcription (supervised only) | If false, disables notes transcription. Minimum OS version: 18.4 | MDM controls | Selected | |
Allow Safari summary (supervised only) | If false, disables Safari summarization. Minimum OS version: 18.4 | MDM controls | Selected |