Apply password settings for mobile devices
This feature is available in any G Suite edition.
As an administrator, you can use password settings to protect data on mobile devices under management. All settings are supported on all versions, except where specified.
- Define a password type and strength.
- Specify its number of characters.
- Determine a length of time before it expires.
- Set an elapsed time limit before locking the device screen.
- Wipe a device (equivalent to a factory reset) if it's compromised by too many failed password attempts.
Apply password settings
You can apply password settings any time after you set up mobile devices for management. Set up mobile device management before working with password settings. Password settings are supported for Android, Apple® iOS®, and Microsoft® Windows Phone®.
To apply password settings:
From the Admin console dashboard, go to Device management.
To see Device management, you might have to click More controls at the bottom.
- Click Password settings.
- Check the Require users to set a password box.
- Select a password strength. Standard and strong passwords are only available with advanced mobile management and include additional options. Android and iOS mobile devices support a minimum of one unlocking mechanism. Windows Phone 7 and 7.5 support the standard setting, but not strong.
- Basic—Allows any input recognized by the device to unlock the screen.
- Standard—Requires 2 or more characters in any order, without a pattern.
- Strong—Requires one or more characters (alphabetical and numeric) and symbols, in any order.
- (Optional) If you choose standard or strong password strength, consider these options:
- Minimum number of characters—Enforce a minimum password length. Strong passwords should have 3 or more characters.
- Number of days before password expires—Check this box and enter the number of days for a password to remain active. This option prompts users to reset their passwords on a regular basis. Supported on Android 3.0 Honeycomb and later devices.
- Number of expired passwords that are blocked—Check this box and enter the number of previous passwords that can’t be used again. Prevents the reuse of expired passwords. Supported for Android 3.0+.
- Automatically lock the device after—Select an option to lock the device screen after a set time. For Apple® iPhone® devices, the limit is 5 minutes. For Apple® iPad® devices, the limit is 15 minutes.
- Number of failed password attempts before device is wiped
Warning: Use this setting with caution.
Check this box and enter a number to limit the number of failed password attempts. For example, if you set it to 5, 4 failed attempts are allowed without consequence. After the fifth failed attempt, the device is automatically wiped. Wiping a device is the equivalent of a factory reset.
- Click Save.
If you're using an encrypted device with Android 5.0, and you set a password policy, the policy app will ask you to set a startup password. You can choose whether to require your PIN, pattern, or password when your device starts:
- Open your device's Settings app .
- Under "Personal," tap Security.
- Tap Screen lock.
- To choose your screen lock, tap Pattern, PIN, or Password.
- You'll be asked to "further protect this device" by requiring your PIN, pattern, or password when your device starts. The first time that you choose this setting, it will encrypt your device.
- Select Require to start device.
- Tap Continue.
- Set your password and tap Continue.
- Confirm your password and tap Ok.