Enable Compromised Protection to protect your mobile network from compromised resources.

System Performs an Enterprise Wipe on Compromised Devices

When the system detects that a device is compromised, it performs an enterprise wipe on the device. This behavior happens regardless of configured compliance policies in the Workspace ONE UEM console.

See Supported Settings and Policies Options for the SDK to find out which default settings the SDK supports. Find the matrix in the Workspace ONE UEM Mobile Application Management Guide. To know what default settings Workspace ONE UEM applications support, see the topics for that specific application.

Configure Compromised Protection

  1. Navigate to Groups & Settings > All Settings > Apps > Settings and Policies > SDK App Compliance.
  2. Select  Enabled for the SDK App Compliance menu item to access the compromised protection menu items.

    If you disable this setting, you also disable Compromised Protection.

  3. Select Enabled to stop a compromised device from accessing your mobile network.
  4. The Block or Wipe functions are read-only. Compromised Protection always uses the Wipe function. The Wipe function, also called an enterprise wipe, clears privileged corporate data off devices. The system does not perform wipe actions on data unrelated to the enterprise.

For more topics about the SDK and mobile application management, see MAM Functionality With SDK Functions.