• Password Policy
    A group of policies to manage password policies on the device, including enabling or disabling the ability to manage passwords and other authentication methods to log in to the device.
    • Enable password policy controls with KSP
      Use this control to allow management of password policies on the device. Enable this option before changing any password related settings. If this option is not enabled, any settings for password and other authentication related items are ignored.
    • Biometric authentication
      A group of policies to manage the biometric authentication option without user interaction. Availability: Knox v2.3 or higher.
      • Enable fingerprint authentication
        Use this control to allow or stop the use of fingerprint recognition for authentication.
      • Enable Iris authentication
        Use this control to allow or stop the use of iris recognition for authentication.
      • Enable Face recognition
        Use this control to allow or stop the use of facial recognition for authentication.
    • Enable multifactor authentication (Premium)
      Use this control to enable or disable multifactor authentication (2FA). Once enabled, a device is only unlocked after two authentication methods are provided, including one biometric input (face / iris / fingerprint) and one lock screen method (PIN / password / pattern).This feature is available only on Knox 3.2.1 and above. Caution: Incorrect use of this policy together with “One Lock” and “Biometric policy” can lock your device.
    • Password Change (Premium)
      A group of policies to manage password change.
      • Enforce Password Change
        Use this control to enforce password change. if no password set, enforce to set. Caution: Verify password enforcement condition before saving any new policy otherwise it will enforce password at unexpected time
      • Password Enforcement timeout
        Enter the value in mins up to which user can cancel/delay the password change
    • Password Restriction
      A group of policies to manage password restriction.
      • Maximum Character Sequence Length
        Use this policy to specify maximum length of an alphabetic sequence that can be allowed on device password