Configuring Business Container for VisionOS Devices
Efficiently Securing Corporate Data on Apple Devices
This document provides a comprehensive walkthrough on configuring container restrictions for Apple devices using Hexnode UEM. By implementing container restrictions, you can effectively manage and secure corporate data by controlling the interaction between managed and unmanaged apps. This ensures that sensitive information remains confined to the corporate environment even on devices used for both work and personal purposes.
Step 1
Welcome to Hexnode UEM. In this video, we will explore container restriction, a feature designed to safeguard corporate data on Apple devices by controlling the flow of information between managed and unmanaged apps. This ensures that sensitive work data remains within the corporate environment, even on devices used for both work and personal purposes. Apple devices logically separate data into two containers.
Step 2
Apps can be categorized into two types: managed or unmanaged. Managed apps are those installed or configured by Hexnode for work-related use, whereas unmanaged apps are personal apps installed by the user. Container restrictions define the interaction between these two categories, controlling options like file opening, data copying, and contact sharing, thereby ensuring company data security. To configure container restrictions, navigate to the Policies tab.
Step 3
Click on "New Policy," select the desired platform, and then click "Next."
Step 4
Name the policy "Enterprise."
Step 5
Provide a meaningful name and description. Navigate to the Hexnode Business Container. This section controls the data flow between personal and corporate apps. Click on "Configure."
Step 6
Explore the multiple restrictions available. The option to open documents from managed files using unmanaged apps controls whether work files can be opened in personal apps.
Step 7
Disable this option to prevent company documents from being shared or viewed in unmanaged apps.
Step 8
The option to open documents from unmanaged apps in managed apps controls the reverse flow, preventing personal files from being opened in managed work apps. Note that if both options are selected, the setting to restrict copying or pasting between managed and unmanaged apps will be unavailable. This feature effectively blocks copying text, files, or media between work and personal apps, thus preventing accidental data sharing. Press the "I" icon to learn more about these restrictions. Once configured, click on "Assign New Policy Targets" and then press "Save."
Step 9
Wait for the policy to validate. This ensures that access to sensitive information is restricted within managed apps while allowing safe usage of personal apps on the same device. For more information, visit our help documentation or contact our support team.
Step 10
Thank you for watching.
