To create compliance rules:
The Compliance rules page contains individual tabs for the device platforms that are activated for the customer. Repeat the following steps for all required platforms.
Each compliance rule has a fixed severity level (high, medium, low) that is depicted by a blue icon. The severity helps you to assess the importance of each rule and the actions you should implement when it is violated.
If you have defined app groups, you can assign these to the compliance rules Allowed apps, Forbidden apps and Mandatory apps.
|Deny email||Forbid email access.
This action can only be taken if the super administrator has configured a connection to the internal or to the standalone EAS Proxy. See the Sophos Mobile Control super administrator guide.
|Lock container||Disable the Sophos Secure Workspace and Secure Email apps. This
affects document, email and web access that is managed by these
This action can only be taken when you have activated an SMC Advanced license.
This option is only relevant for Android and iOS devices.
|Deny network||Forbid network access.
This action can only be taken if the super administrator has configured Network Access Control. See the Sophos Mobile Control super administrator guide.
|Notify admin||Send compliance emails to selected recipients.
The list of recipients and the time schedule is specified collectively for all sets of compliance rules that you create. See the instructions later in this section.
|Transfer task bundle||Transfer a specific task bundle to the device.
Select a task bundle from the list, or select None to transfer no task bundle when the compliance rule is violated.
Important: When used incorrectly, task bundles may misconfigure or even wipe devices. To assign the correct task bundles to compliance rules, an in-depth knowledge of the system is required.