Managed configuration

0 of 100 characters entered
  • Profile name(version)
    Add a unique profile name(version) that highlights the policies and restrictions applicable to this profile. You can later use the name(version) for tracking and debugging. If use the profile name and version together, can manage it by version. To ensure good user experience, we recommend using a name less than 50 characters in length.
    12 of 5000 characters entered
  • Knox License key(Knox Suite, DualDAR, etc)
    If your UEM console supports Knox license information, enter your Knox License there. For UEM consoles not showing this information, enter your Knox License Key in this field. This field does not apply to Blackberry users. Applies to devices running Android P and Knox v3.2.1 or higher. To buy a Knox license, contact your Samsung Knox Reseller.
    0 of 5000 characters entered
  • Debug Mode
    The informative mode shows policy results and errors on the device. We recommend enabling this mode only during the test phases and not during final deployment.
  • Separated Apps policies
    A group of policies and restriction that are applicable to Separated apps.
    • Enable Separated Apps
      Turn Separated Apps policies on or off. Enable this option before using any of the Separated Apps policies. If this option is disabled, KSP will apply policy to remove Separated Apps from the device, all apps installed inside Separated Apps will be uninstalled from the device.
    • Allow List Policy
      A group of policies for specifying the list of apps to be separated and whether the specified list of apps should be installed outside or inside of the separate space.Available Knox 3.7 or higher
      • Location for Separate Apps installation
        If the value is set to Outside, List of specified apps will be installed outside (i.e. in user0), apps not in the list will be installed inside. if the value is set to Inside, List of specified apps will be installed inside (i.e. inside separate space), apps not in the list will be installed outside
      • List of Apps to Separate
        Provide list of applications that will be separated from all the other apps not in this list. *Note: If Outside is selected for Location of Separate Apps installation then existing apps installed outside in User0 that are not part of this list will be uninstalled
        0 of 5000 characters entered
  • Device-wide policies (Selectively applicable to Fully Manage Device (DO) or Work Profile-on company owned devices (WP-C) mode as noted)
    A global group of policies and restrictions that are applicable to all users of the device. This list includes items that impact all users on the device, whether they fall under personal or work profiles. Availability: Knox 3.0 and above.
    • Enable device policy controls
      Use this control to enable or disable device-wide policies. Enable this option before using any of the device-wide policies. If this option is disabled, KSP does not apply any policies in default user (User 0). *Note: Privacy-related functions are not supported in WPC mode.(ex : APN Policy, Certificate Management Policy and so on)
    • Advanced Restriction policies (Premium)
      A group of controls to manage advanced restriction policies. A KPE Premium license is required for all policies in this group.
      • Enable Advanced Restrictions controls
        Use this control to enable advanced controls on the device.
      • Allow Wi-Fi scanning
        Use this control to block the device from scanning for Wi-Fi networks in range to improve the accuracy of location detection. Availability with Knox 3.2 or higher.
      • Allow bluetooth scanning
        Use this control to block the device from scanning for bluetooth devices in range to improve the accuracy of location detection. Availability with Knox 3.2 or higher. *Note: If disabled, all Bluetooth functionality is disabled. If Bluetooth scanning is disabled, the device declines location accuracy and does not allow apps and services to scan for and connect to nearby devices automatically via Bluetooth.
      • Allow remote control
        Use this control to block connections to the device, using third-party remote control apps. Availability with Knox 3.0 or higher.
      • Enable Common Criteria (CC) mode
        Use this control to enable services to bring the device into the Common Criteria-evaluated configuration, called CC Mode. For devices enrolled in a UEM, these settings are set at the UEM level.
      • Allow dual SIM operation
        Use this control to enable or disable the secondary SIM card slot on a dual SIM device. Disabling this policy blocks functions on the second SIM, preventing calls, SMS / MMS and data. Enabling the policy returns all ordinary functions to the previously blocked SIM. This policy is ignored by devices that only have one SIM.
      • Wi-Fi Advanced Detect suspicious network
        A group of controls to configure WIPS to prevents unauthorized network access to local area networks and other information assets by wireless devices.
        • Enable WIPS Control
          Use this control to enable or disable WIPS options. If this control is disabled, any changes to other WIPS related settings have no impact.
        • Allow WIPS Enforcement
          Select this option to enforce the feature, Disallow end user to bypass WIPS
        • Allow WIPS Advance Protection
          Select this option to Disallow end user to change WIPS
      • Set USB Device Connection Type
        Use this control to select the usb connection type
      • Allow copy contact to SIM operation
        Use this control to enable or disable copy contact from device to SIM Card
    • Application management policies
      A group of policies to configure and manage applications on the device.
      • Enable application management controls
        Use this control to enable or disable advanced application management settings.
      • Battery optimization allowlist
        Use this control to exempt applications from battery usage optimizations such as Android Doze mode. For a fully managed device with a Work profile, enter the list of application on the personal profile to allowlist. To specify Work profile-only apps, go to Work Profile Policies > App Management section. Enter a comma-separated list of package names to specify the apps to allowlist.
        0 of 5000 characters entered
      • Notifications allowlist
        Use this control to stop applications from showing notifications on the status bar. When this policy is enabled, notifications from all applications are blocked except for the apps specified in this allowlist. Enter the values as a comma separated list or wildcard to specify multiple apps to the allowlist, if you want to use advanced query, please use correct regular expression syntax.
        0 of 5000 characters entered
      • Notifications blocklist
        Use this control to add a list of package names to notification blocklist. Enter the values as a comma separated list or wildcard to specify multiple apps to the blocklist, if you want to use advanced query, please use correct regular expression syntax.
        0 of 5000 characters entered
      • App update controls
        • Application update policy
          Use this control in combination with the following List of apps control to allow or restrict updates to specific apps. The default value is set to ‘None’, meaning apps on your device update per the policies you’ve specified in your Device Settings and in app settings on Managed Google Play Store.
        • List of apps
          Use this field to allow or restrict app updates for specific apps. Enter the values as a comma separated list or wildcard to specify multiple apps, if you want to use advanced query, please use correct regular expression syntax.
          0 of 5000 characters entered
      • Allow USB Devices for default access by Application (Configure profiles below)
        Use this setting to grant user permission for one or more usb devices to be used by a particular package. Use the Allowed USB devices for Applications section for Configurations.
      • Application Allowlist by Pkg Name
        Use this control to allowlist applications to be installed on the DO. When this policy is enabled, third-party application (application that is not part of system image) based on the application package name will be allowlisted. Enter the values as a comma separated list or wildcard to specify multiple apps to the allowlist, if you want to use advanced query, please use correct regular expression syntax. If the package name of an application currently being installed matches a package name pattern in both the blocklist and allowlist, the allowlist takes priority and the application is installed.
        0 of 5000 characters entered
      • Application Blocklist by Pkg Name
        Use this control to blocklist applications to be installed on the DO. When this policy is enabled, third-party application (application that is not part of system image) based on the application package name will be blocklisted. Enter the values as a comma separated list or wildcard to specify multiple apps to the blocklist, if you want to use advanced query, please use correct regular expression syntax. If the application package is already installed, the API does not affect the existing installation.
        0 of 5000 characters entered
      • Application Allowlist by Signature used
        Use this control to allowlist applications to be installed on the DO. When this policy is enabled, third-party application (application that is not part of system image) based on the signature used by the application will be allowlisted. Enter the values as a comma separated list or wildcard to specify multiple apps to the allowlist. If the signature of an application currently being installed matches the signature in both the blocklist and allowlist, the allowlist takes priority and the application is installed.
        0 of 5000 characters entered
      • Application Blocklist by Signature used
        Use this control to blocklist applications to be installed on the DO. When this policy is enabled, third-party application (application that is not part of system image) based on the signature used by the application will be blocklisted. Enter the values as a comma separated list or wildcard to specify multiple apps to the blocklist. If the application package is already installed, the API does not affect the existing installation.
        0 of 5000 characters entered
      • Disable Application without user interaction
        Use this control to disable application without user interaction. The disabled application package is not uninstalled but the device user cannot use it. The API does not affect the future application package state. Enter the values as a comma separated list, for example, "com.xyz, com.abc".
        0 of 5000 characters entered
      • Force Stop Blocklist
        Use this control to prevent the user from stopping certain applications. The stop actions include force stop in Settings app, stopping through third-party applications, stopping any background process by system and stopping any service from the application. Enter the values as a comma separated list or wildcard to specify multiple apps to the blocklist, if you want to use advanced query, please use correct regular expression syntax.
        0 of 5000 characters entered
      • Widget Allowed List
        Use this control to allow widget to be installed on the DO. When this policy is enabled, widget matching the list will be allowed to installed and rest all the other widgets will be blocked. Enter the values as a comma separated list or wildcard to specify multiple widget to the allow. If the package name matches the pattern in both the blocklist and allowlist, the allowlist will takes priority.
        0 of 5000 characters entered
      • Widget Blocked List
        Use this control to block widget to be installed on the DO. When this policy is enabled, a user cannot add widgets with package names that match the list, and existent widgets are removed from the launcher home screen. Enter the values as a comma separated list or wildcard to specify multiple widget to the block. If the package name matches the pattern in both the blocklist and allowlist, the allowlist will takes priority.
        0 of 5000 characters entered
      • Package Name for Auto-Launch
        Enter the package name of the application that needs to be launched after it is installed along with the Component name. Example: PackageName/ComponentName
        0 of 5000 characters entered
      • Clear Cache Block List
        Use this control to prevent the user from clearing cache for certain applications. The actions include clear cache in Settings app, clearing cache through third-party applications, and clearing service cache from the application. Also, wildcard characters like "com.xyz.*" can be used to specify multiple application package names.
        0 of 5000 characters entered
      • Clear Data Block List
        Use this control to prevent the user from clearing data for certain applications. The actions include clear data in Settings app, clearing data through third-party applications, and clearing service data from the application. Also, wildcard characters like "com.xyz.*" can be used to specify multiple application package names.
        0 of 5000 characters entered
      • Disable Heat Management
        Use this control to enable/disable the enhanced battery heat management algorithm. It aims to provide better battery performance by limiting resource consumption of background apps.
    • Audit Log (Premium)
      A group of controls to enable audit log on the device. Available with a KPE Premium license
      • Enable Audit Log
        Use this control to enable audit log to capture events such as Password policies set for devices; App installation and removal; Certificate failure and key generation; Account creation and removal; File exchange attempts over Wi-Fi etc
      • Audit Log Policy Configuration
        A group of controls to configure audit log on the device. Available with a KPE Premium license
        • Audit Log Policies
          Use this control to select granular audit log on the device
          • All Group
          • Application Group
          • Events Group
          • Network Group
          • Security Group
          • System Group
        • Audit Log Outcome
          Use this control to select audit log outcome on the device
        • Audit Log Severity Level
          Use this control to select severity level of Audit Log
        • Audit Log Frequency
          Use this control to select the Audit log frequency
    • Call and Messaging control
      A group of policies to manage device-wide call and messaging restrictions.
      • Enable call and messaging controls
        Use this control to enable or disable the phone call and text messaging functionality on the device.
      • Manage RCS messaging
        Use this control to block RCS on the device. RCS (Rich Communication Services) is an advanced messaging system that aims at making SMS messages more interactive. For example, letting users transmit in-call multimedia. By default, RCS messaging is allowed. This policy is only for the Samsung Native messages app(Samsung Message, Google Message).
      • Set disclaimer text for messages
        Use this control to set a disclaimer text with all the outgoing SMS and MMS from the device. The disclaimer text should be limited to 30 characters.
        0 of 5000 characters entered
      • Call Controls
        A group of policies to manage call controls and restrictions
        • Blocklist Incoming Call restriction
          Use this list to block incoming calls from certain numbers. Enter the values as a comma separated list or wildcard to specify multiple numbers to the blocklist, if you want to use advanced query, please use correct regular expression syntax.
          0 of 5000 characters entered
        • Blocklist Incoming Call exception
          Use this list to add exceptions to the blocklist for incoming calls from certain numbers. Enter the values as a comma separated list or wildcard to specify multiple numbers to the blocklist, if you want to use advanced query, please use correct regular expression syntax.
          0 of 5000 characters entered
        • Blocklist Outgoing Call restriction
          Use this list to block outgoing calls from certain numbers. Enter the values as a comma separated list or wildcard to specify multiple numbers to the blocklist, if you want to use advanced query, please use correct regular expression syntax.
          0 of 5000 characters entered
        • Blocklist Outgoing Call exception
          Use this list to add exceptions to the blocklist for outgoing calls from certain numbers. Enter the values as a comma separated list or wildcard to specify multiple numbers to the blocklist, if you want to use advanced query, please use correct regular expression syntax.
          0 of 5000 characters entered
      • SMS Controls
        A group of policies to manage SMS controls and restrictions
        • Blocklist Incoming SMS restriction
          Use this list to block incoming SMS from certain numbers. Enter the values as a comma separated list or wildcard to specify multiple numbers to the blocklist, if you want to use advanced query, please use correct regular expression syntax.
          0 of 5000 characters entered
        • Blocklist Incoming SMS exception
          Use this list to add exceptions to the blocklist for incoming SMS from certain numbers. Enter the values as a comma separated list or wildcard to specify multiple numbers to the blocklist, if you want to use advanced query, please use correct regular expression syntax.
          0 of 5000 characters entered
        • Blocklist Outgoing SMS restriction
          Use this list to block outgoing SMS from certain numbers. Enter the values as a comma separated list or wildcard to specify multiple numbers to the blocklist, if you want to use advanced query, please use correct regular expression syntax.
          0 of 5000 characters entered
        • Blocklist Outgoing SMS exception
          Use this list to add exceptions to the blocklist for outgoing SMS from certain numbers. Enter the values as a comma separated list or wildcard to specify multiple numbers to the blocklist, if you want to use advanced query, please use correct regular expression syntax.
          0 of 5000 characters entered
    • Certificate management policies (Premium)
      A group of policies to control certificate management settings. For example, disable certificates, restrict certificates and more.
      • Enable certificate management controls
        Use this control to enable or disable certificate management settings for the device. Enable this control before changing any certificate management settings. If this control is not enabled, any Enterprise certificate management policy is ignored.
      • Certificate revocation
        Choose the Certificate revocation method most appropriate for your devices.
        • Enable revocation check
          Use this to check certificate validation. For example if you list “com.samsung.email” in a allowlist, any certificates used by this app for SMIME encryption or signing is first checked against a list of Certificate Revocation List (CRL) to verify that they are still valid. Enter the application package names to check as a comma separated list, for example (“com.xyz, com.abc”)
        • Enable OCSP check before CRL
          Use this to perform certificate validation using OSCP before checking a CRL. If the OCSP response is inconclusive the device performs a CRL check.
        • List of apps to enable for verification
          Use this to perform certificate revocation on a list of applications. Enter the values as a comma separated list of the application packages, for example, “com.xyz, com.abc”.
          0 of 5000 characters entered
      • Add trusted CA certificate
        Enter the name of a Trusted CA Alias which was already defined in Certificate Alias. Enter the values as a comma separated list of the Trusted CA Alias
        0 of 5000 characters entered
      • Block User from removing Certificate
        Use this control to block the user from removing certificates from the keystore. By default, users are allowed to remove certificates from the keystore.
      • Allow applications to read private keys without alerting user (Configure profiles below)
        Use this setting to Allow application to read private keys without alerting user. To specify application package name, host, port, alias & storage name that will be matched with what applications provided. Use the Allowed apps for reading private keys section.
      • Install Certificate in keystore(s) silently
        Enter the name of a CA Alias which will be installed silently in the device keystore(s). Enter the values as a comma separated list of the CA Alias
        0 of 5000 characters entered
    • Client Certificate management (CCM) policies (Premium)
      A group of policies to control client certificate management settings. *Note: CCM Policies are deprecated in the KSP release (22.05). Due to their deprecation, we strongly suggest that you no longer use these policies since Android 12(Knox 3.8.0). See KSP Release Notes for details.
      • Enable client certificate management controls
        Use this control to enable or disable client certificate management settings for the device. Enable this control before changing any client certificate management settings. If this control is not enabled, any Enterprise client certificate management policy is ignored. *Note: CCM Policies are deprecated in the KSP release (22.05). Due to their deprecation, we strongly suggest that you no longer use these policies since Android 12(Knox 3.8.0). See KSP Release Notes for details.
      • Add packages to be exempted from access control
        Enter Name of the packages to be exempted from access control.Enter the values as a comma separated list of the package names.
        0 of 5000 characters entered
    • Date Time Change
      A Group of control to enable Date and Time Change
      • Enable Date Time Policy controls
        Use this control to enable Date and Time Change
      • Allow Date Time change
        Use this setting to allow or disallow date time change
    • Device Account Policy
      A group of controls for Device Account Policy
      • Enable Device Account Policy controls
        A group of controls to Enable Device Account Policy
      • Enable Device Account policies (Configure profiles below)
        Use this setting to enable device account addition policies
    • Device Admin allowlisting
      A group of policies to manage Device Administrator (DA) privileges to specific apps when KSP is launched on the device. By default, DA level access is blocked for all apps. KSP cannot deactivate DA level access for an app that is already activated before KSP is launched.
      • Enable device admin controls
        Use this control to enable or disable Device Admin allowlisting control for applications on a device where KSP is launched.
      • Allowlisted DAs
        By default, KSP will block activation of any application as device admin, except those specified in this allowlist. Enter a comma-separated list of packages to specify the list of apps to allowlist.
        0 of 5000 characters entered
    • Device Controls
      A group of policies to manage device controls, such as APN settings, NFC policies, certificate management, and more.
      • APN Setting Policy
        A group of policies to create, update and remove Access Point Name (APN) settings on the device.
        • Enable APN settings policy control
          Use this control to enable or disable APN settings for the device. Enable this control before changing any APN settings. If this control is not enabled, any APN settings are ignored. *Note: When the APN Setting Policy is enabled, the eSIM menu disappears to prevent conflicts between functions.
        • Name of APN Configuration to add or update
          Enter the name of the APN configuration profile that needs to be added or updated. Ensure that the name used here matches at least one name in the APN configuration > name field. For example, “samsungAPN3”
          5 of 5000 characters entered
        • Allow user to change APN Settings
          Use this control to allow or prevent user from changing the APN settings.
      • Data Roaming Policy
        A group of policies to control the data roaming settings on the device.
        • Enable data roaming policy control
          Use this control to enable or disable data roaming settings for the device. Enable this control before changing any data roaming settings. If this control is not enabled, any data roaming settings are ignored.
        • Allow data roaming
          Use this setting to allow or prevent users from changing the current data roaming state (on or off).
        • Allow voice call
          Use this setting to allow or prevent users from changing the current voice call state (on or off).
      • Network Mode Policy
        A group of policies to control the Network mode settings on the device.
        • Enable network mode policy control
          Use this control to set the network mode type for the device. Enable this control before changing any network mode settings. If this control is not enabled, any data roaming settings are ignored.
        • Set Network mode
          Use this control to set the network mode. *Note: Supported from S OS, US OPEN, TMO and S21 only.
      • NFC Policy
        A group of policies to control Near Field Communications (NFC) settings. For example turning NFC on or off.
        • Enable NFC policy controls
          Use this control to enable or disable NFC settings for the device. Enable this control before changing any NFC settings. If this control not enabled, any NFC settings are ignored.
        • Turn on NFC
          Use this control to turn NFC on or off. If this setting is disabled, all NFC related functions will not work such as NFC based payment systems or NFC tags.
        • Allow user to change NFC state
          Use this setting to allow or prevent users from changing the current NFC state (on or off).
      • Wi-Fi Policy
        A group of policies to control Wi-Fi settings. For example setting Wi-Fi hotspots, allowing specific connections etc.
        • Enable Wi-Fi policy controls
          Use this control to enable or disable Wi-Fi polices on a device. If this control not enabled, any Wi-Fi settings you change are ignored.
        • Set Wi-Fi hotspot SSID
          Use this control to name the Wi-Fi hotspot saved on a device. For example, you can set a custom name, such as “MyMobileWifi”, instead of using the default SSID.
          0 of 5000 characters entered
        • Set Wi-Fi hotspot password
          Use this control to enforce a password when a Wi-Fi mobile hotspot is enabled. If this field is empty, users can create unsecured hotspot network. Passwords should be eight or more characters long.
          0 of 5000 characters entered
        • Allow user to change hotspot setting
          Use this control to allow users to change Wi-Fi hotspot settings on the device. If this setting is off, users cannot make modifications to the hotspot settings on their device
        • Allow open Wi-Fi connection
          Use this control to allow devices to start an open (non-secured) Wi-Fi hotspot or connect to open and unprotected Wi-Fi access points. If this control is off, users cannot connect to unsecured Wi-Fi networks or start an open (non-secured) Wi-Fi hotspot.
        • Allow Minimum Wi-Fi Security Requirement
          Use this option to allow user to select the minimum security requirement for Wi-Fi Connection. *Note: This policy can be applied only if open Wi-Fi connection is disabled
        • Block Wi-Fi Network Connection
          Add SSID to the list of blocked network to prevent user to connect
          0 of 5000 characters entered
        • Allow Automatic Wi-Fi Connection to saved SSIDs
          Use this control to allow or deny automatic connections of saved SSIDs
        • Allow Control for Wi-Fi Password to be Visible
          Use this control to make the password hidden or visible in the network edit dialog
        • Allow Wi-Fi State Change
          Use this control to allow or deny user access to make Wi-Fi state change
        • Allow to configure Wi-Fi (Configure details below)
          Use this control to allow configuration of Wi-Fi
      • Advanced Wi-Fi Policy (Premium)
        A group of policies to control Advanced Wi-Fi settings. For example setting roam trigger, roam delta, roam scan period etc.
        • Enable Advanced Wi-Fi Policy Controls(Configure profiles below)
          Use this control to enable or disable Advanced Wi-Fi polices on a device. If this control not enabled, any Advanced Wi-Fi settings you change are ignored.
      • Bluetooth Policy
        A group of policies to control bluetooth settings. For example you can block certain bluetooth profiles or services. *Note: These controls have no impact if “Allow BT” is disabled in the “device restrictions” section.
        • Enable bluetooth policy controls
          Use this control to enable or disable bluetooth settings. If this control is not enabled, any changes you make to bluetooth settings are ignored.
        • Enable bluetooth profiles
          Use this control to allow or block peripherals from connecting based on their bluetooth profiles.
          • None
          • Bluetooth Advanced Audio Distribution (A2DP)
          • Bluetooth Audio/Video Remote Control (AVRCP)
          • Bluetooth HandsFree (HFP)
          • Bluetooth Headset (HSP)
          • Bluetooth Phone Book Access (PBAP)
          • Bluetooth Serial Port (SPP)
        • Allowlist Bluetooth Service by UUID
          Use this control to allow peripherals from connecting based on their Bluetooth service UUID. When enabled, all peripherals except those with UUIDs specified here are blocked from operating with the device. The UUIDs should be as per BT SIG specifications. See the KSP Admin guide for a list of frequently used UUIDs.
          • NONE
          • ALL
          • A2DP_ADVAUDIODIST_UUID
          • A2DP_AUDIOSINK_UUID
          • A2DP_AUDIOSOURCE_UUID
          • AVRCP_CONTROLLER_UUID
          • AVRCP_TARGET_UUID
          • BNEP_UUID
          • BPP_UUID
          • DUN_UUID
          • HFP_AG_UUID
          • HFP_UUID
          • HID_UUID
          • HSP_AG_UUID
          • HSP_UUID
          • NAP_UUID
          • OBEXOBJECTPUSH_UUID
          • PANU_UUID
          • PBAP_PSE_UUID
          • PBAP_UUID
          • SPP_UUID
        • Blocklist Bluetooth Service by UUID
          Use this control to block peripherals from connecting based on their Bluetooth service UUID. When enabled, all peripherals except those with UUIDs specified here are allowed from operating with the device. The UUIDs should be as per BT SIG specifications. See the KSP Admin guide for a list of frequently used UUIDs.
          • NONE
          • ALL
          • A2DP_ADVAUDIODIST_UUID
          • A2DP_AUDIOSINK_UUID
          • A2DP_AUDIOSOURCE_UUID
          • AVRCP_CONTROLLER_UUID
          • AVRCP_TARGET_UUID
          • BNEP_UUID
          • BPP_UUID
          • DUN_UUID
          • HFP_AG_UUID
          • HFP_UUID
          • HID_UUID
          • HSP_AG_UUID
          • HSP_UUID
          • NAP_UUID
          • OBEXOBJECTPUSH_UUID
          • PANU_UUID
          • PBAP_PSE_UUID
          • PBAP_UUID
          • SPP_UUID
        • Allow Device discoverable Mode
          Use this control to enable or disable Bluetooth discoverable mode.
      • Boot banner
        A group of controls to add, change, or show a banner upon device restart. Available with a KPE Premium license.
        • Enable banner on device reboot
          Use this control to show a banner on the device display when the device restarts. Default value is set to not show a banner upon device reboot.
        • Custom Banner Message