...
- Enforces a password of minimum length 4 on a mobile device that mounts Exchange.
- Policy is not enforced if Box app is installed
- Password complexity is not a requirement, nor password age, or password reset frequency. These items are security deterrents but unnecessary to attain the Goals stated above.
- After 10 incorrect password entries, a wipe code is sent to the device. The user is warned of this.
- The Device is instructed to compare its local policy to the server every hour. Changes in the server policy will appear on the device within 1h:59minutes.
- The device policy does not allow "Unsigned Applications" (those not approved by the OS provider, or sanctioned App store
- The device policy does not otherwise restrict options on the device, in order to observe the BYOD environment at Tufts.
- The policy will not allow a device that cannot accept the policy (due to incompatibilities in OS) to connect to Exchange over ActiveSync
...