VMware Workspace ONE Community
matttye
Contributor
Contributor

Android Device Passcode Policy Override?

Just recently, we have multiple newly enrolled Android devices that are seeing our device unlock passcode policy profile being overridden to a more strict set of rules.  Is this something new in Android that I missed?  We have our policy set to a minimum of 6 digits and that is what appears at first on the device, but immediately after that appears the next screen show that the minimum is 8, and that it must be complex (which we do not have set). What is causing Android devices to suddenly prompt for a stronger device passcode than we have set by policy?  This is a very recent development as far as I am aware.  Please advise.  

0 Kudos
1 Reply
ipeto
VMware Employee
VMware Employee

Please refer to the following KB article for further information. 

'Getting Ready for Android 12'      https://kb.vmware.com/s/article/82775?lang=en_US&queryTerm=82775

Several APIs related to password quality requirements were formally deprecated in favour of a new API introduced in Android 12 to enforce password complexity. See Passcode Profile Changes for Android 12 for more details.

  • A future Workspace ONE UEM Console release will support configuring the new complexity values directly. 

  • On Workspace ONE UEM Console releases that do not support the new complexity values, for Work Profile Android 12+ devices on Intelligent Hub 22.09+, the passcode requirements enforced may differ from the requirements set in the Passcode Profile. This is because the new API is not a direct replacement of the existing API. See Versions of Workspace ONE UEM that only support Passcode Content and Minimum Length for more detail.

  • Fully managed devices and COPE devices as well as all Android 11 and lower devices are exempt from this API deprecation.

0 Kudos