Security Settings
Please note that iOS 4 supports multiple Exchange ActiveSync accounts on a single device. This introduces the possibility of a device dealing with conflicting sets of IT/Security policies issued from multiple Exchange ActiveSync servers. In these cases, the device will always enforce the highest security requirements of all conflicting policies.
SSL Encryption
|
SSL is an encryption protocol for data-in-motion between the device and NotifyLink server. An SSL certificate must be installed on the web server in order for you to use SSL. Check with your IT administrator to determine if this feature is available to you. (SSL is available to NotifyLink On Demand users, as all On Demand servers are equipped with SSL certificates.) If the server is NOT using SSL (check with your IT administrator to verify), turn the Use SSL setting off. This will allow the device to make connections to the NotifyLink server over http instead of https. • Tap Settings from the device’s Home screen. • Tap Mail, Contacts, Calendars • Tap your account and then tap Account Info • Tap the Use SSL ON/OFF box to display OFF
|
|
Required Password and Inactivity Timeout
If your organization’s mobile security policy requires that your device be password protected, you will be prompted to define your lock password on the device.
Note: If your organization does not enforce the password policy, but you wish to password protect your device, you can:
• Request that your IT Administrator turn on the enforcement for your account through the NotifyLink Administrative Web. Then follow the instructions below.
• Use the device’s native Passcode Lock option (Settings > General > Passcode Lock) to set a 4 digit numeric passcode.
1. The “New Passcode Required” message
will appear. Tap Continue.
Note: If
you tap Close here, the prompt will pop up each time the device
wakes.
2. Enter a passcode, then re-enter it to confirm.
Passcode Requirements: Although the entry instructions read, “Enter 1 or more numbers,” the keypad displays allowing you to enter letters, numbers, or non-alphanumeric characters. If server security rules are enforced, there may be a minimum password length requirement or you may be required to use a certain number of complex characters (non-alphanumeric) in the password.
|
|
|
|
|
You will also want to set the Auto-Lock which determines the inactivity timeout interval on the device. This will turn off the device’s display and prevent unintended operation of your device. Note: iPhone users can still receive calls and text messages and can adjust volume for the headpiece while the device is locked. iPod touch/ iPad users can also adjust the volume while the device is in a locked state. 3. Tap Settings > General > Auto-Lock. 4. Select a 1, 2, 3, 4, or 5 minute interval. Choose ‘Never’ to disable the inactivity timeout. Note: If server security rules are enforced, you can only choose intervals less than or equal to the value of the server’s Inactivity Timeout setting (within the 1 to 5 minute range) and you will not be able to choose Never. |
|
Changing Your Passcode
|
If you want to change your passcode: 1. Tap Settings > General > Passcode Lock 2. Tap Change Passcode. 3. Enter your current passcode. 4. Enter your new passcode, then re-enter it to confirm. |
|
Turning the Passcode Off
|
If the passcode requirement is lifted* and you wish to operate without a passcode, you will have to disable the passcode on your device after the requirement is lifted. Note: Once the requirement has been disabled on the server, you may need to turn the device off, then on again before adjusting this setting. See Knowledge Base article for more information. 1. Tap Settings > General > Passcode Lock 2. Tap Turn Passcode Off. 3. Enter your current passcode.
* From the NotifyLink Administrative Web: Lock Rules, disable the Inactivity Timeout. |
|
Wipe on Failed Unlock Attempts
This security feature can be enforced from the NotifyLink Administrative Web. The purpose of Wipe on Failed Unlock Attempts is to limit the chances an unauthorized user has to guess a password.
A failed unlock attempt wipe will remove account information and all data (messages, contacts, calendar events, tasks, media, etc.) from the device. The device returns to its original, factory settings.
iPhone 3GS and 4G devices will complete the wipe rapidly, however, this can take up to 2 hours or more on older models. You will be unable to use the device while data is being overwritten.
If this feature is not enforced from the server, iOS
versions 3.0 or later allows the user to enable it locally.
Select
Settings > General > Passcode
Lock and turn Erase Data ON. The default is 10 failed
attempts.
Remote Wipe
In the event that your device is lost or stolen, contact your IT Administrator as soon as possible. The administrator has the ability to enforce a Remote Wipe security function on the device from the NotifyLink Administration Web.
A Remote Wipe will remove account information and all data (messages, contacts, calendar events, tasks, media, etc.) from the device. The device returns to its original, factory settings.
iPhone 3GS and 4G devices will complete the wipe rapidly, however, this can take up to 2 hours or more on older models. You will be unable to use the device while data is being overwritten.
Note: If your device is retrieved, your NotifyLink account must be deleted from the NotifyLink server and added again before you can restore the device through iTunes and re-registered your account.