Compliance Profiles

To understand Compliance Profiles in Workspace ONE UEM, you must have a full understanding of device profiles and compliance policies. Device profiles serve as the foundation for device management and security while compliance policies act as a security gate protecting corporate content.

Device profiles grant you control over a wide range of device settings. These settings include passcode complexity, geofencing, time schedules, device hardware functionality, Wi-Fi, VPN, email, certificates, and many more.

The compliance engine monitors rules, enforces actions, and applies escalations (all of which you define). Compliance profiles, however, seek to provide the compliance engine with all the options and settings ordinarily available only to device profiles. For more information, see Compliance Policies.

For example, you can make a special device profile that is identical to your normal device profile, only with more restrictive settings. You can then apply this special device profile in the Actions tab when you define your compliance policy. With such an arrangement, if the user fails to make their device compliant, you can apply the more restrictive compliance profile.

Add a Compliance Profile

You can add a compliance profile, which is a hybrid of a compliance policy and a device profile, joining the best of these two features together. Adding a compliance profile is a two part process: 1) make a device profile and 2) assign it as an 'action' in a compliance policy.

You create and save compliance profiles in the same manner as Auto and Optional device profiles.

  1. Navigate to Resources > Profiles & Baselines > Profiles, then select Add, then Add Profile, then select a platform.
  2. Select a Name for your compliance profile that you can recognize later.
  3. In the General profile tab, select 'Compliance' in the Assignment Type drop-down setting.
  4. Complete the remaining General and Payload settings.
  5. When finished, select Save & Publish.
  6. Select this profile in your compliance policy.
  7. Navigate to Devices > Compliance Policies > List View and select Add, then select a platform.
  8. Define the Rules and select Next.
  9. In the Actions tab, make the following selections.
    1. Set the first drop-down menu to 'Profile'.
    2. Set the second drop-down menu to 'Install Compliance Profile'.
    3. Set the third drop-down menu to the device profile you named.
  10. Select Next and proceed configuring the remaining settings including Assignment and Summary tabs.
  11. Save the compliance policy by selecting Finish or Finish and Activate.

For step-by-step instructions on completing a device profile, see Device Profile Editing.

For step-by-step instructions on completing a compliance policy, see Add a Compliance Policy.

Parent topic: Device Profiles

check-circle-line exclamation-circle-line close-line
Scroll to top icon