Skip to content

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/central/Mobile/help/en-us/index.html?contextId=android-enterprise-do-policy-email-account

Email account configuration (Android Enterprise device policy)

The Email account configuration lets you add an Exchange Online or Exchange Server email account to Gmail.

Requirement

To use the %_USERNAME_% and %_EMAILADDRESS_% placeholders as described below, you must configure the user’s Exchange Login and Email Address settings in Sophos Central Admin. See Users.

Restriction

You can’t assign a policy that uses the %_USERNAME_% or %_EMAILADDRESS_% placeholders to a user-less device.

Warning

A managed configuration of the Gmail app conflicts with the Email account configuration, so it’s not available in recent versions of Sophos Mobile. If you’re using a managed configuration from an earlier version, Gmail will ignore the Email account configuration. This happens even if the managed configuration is blank.

For details on managed configurations, see Managed configuration.

Setting Description
Account name The account name.
Server name

For Exchange Online, enter outlook.office365.com.

For Exchange Server, enter your server URL.

Note that outlook.office365.com applies to the worldwide Microsoft 365 cloud. If you’re using a different Microsoft 365 cloud, such as Office 365 Germany, see the Microsoft document Office 365 URLs and IP address ranges.

When you use Exchange Server with the Sophos Mobile EAS proxy, enter its URL instead.
User

The user's sign-in name.

For Exchange Online, this is usually the email address. Enter %_EMAILADDRESS_% to use the email address of the user assigned to the device.

For Exchange Server, enter %_USERNAME_% to use the name of the user assigned to the device.
Email address

The email address of the account.

If you enter the variable %_EMAILADDRESS_%, the server replaces it with the actual email address.
Sender

A sender name for this account.

If you enter the variable %_EMAILADDRESS_%, the server replaces it with the actual email address.
Default email signature The default email signature.
Authentication

The type of authentication that Gmail uses when connecting to Exchange.

  • Modern authentication: Use modern authentication (OAuth 2.0).
  • Basic authentication: Use basic authentication (username and password).
  • Basic and modern authentication: Use modern or basic authentication, depending on which Exchange supports.

To use modern authentication with the Gmail mail app, Google Chrome must be installed on the device.
Synchronization period

The time period used for synchronizing emails.

Only the emails from within the specified period are synchronized to the inbox on the managed device.
SSL/TLS

The connection to the Exchange server is secured by SSL or TLS (depending on what the server supports).

We recommend that you select this check box.
Allow all certificates Allow all certificates in transfer processes from the email server.
Client certificate The client certificate for the connection to the Exchange server.
Allow unmanaged accounts

Allow users to add or remove any Exchange account, except the account specified in this configuration.

If you turn this setting on, you can’t prevent data sharing between other apps and Exchange accounts added by users.