App permissions device policy 编辑

For Android Enterprise apps that are within work profiles: You can configure how requests to those apps handle what Google calls “dangerous” permissions. You control whether the user is prompted to grant or deny the permission request from the app. This feature applies to devices running Android 7.0 and later.

Google defines dangerous permissions as permissions that:

  • Give the app access to data or resources that involve the user’s private information.
  • Or, can potentially affect the user’s stored data or the operation of other apps. For example, the ability to read user contacts is a dangerous permission.

You can configure a global status to control the behavior of all dangerous permission requests. The scope of this configuration is Android Enterprise apps that are within work profiles. You can also control the behavior of dangerous permission request for individual permission groups, as defined by Google, for each app. These individual settings override the global status.

For information on how Google defines permission groups, see the Android developers guide.

By default, users are prompted to grant of deny dangerous permission requests.

To add or configure this policy, go to Configure > Device Policies. For more information, see Device policies.

Android Enterprise settings

Device Policies configuration screen

  • Global State: Controls the behavior of all dangerous permission requests. In the list, click Prompt, Grant, or Deny.
    • Prompt: Users are prompted to grant or deny dangerous permission requests.
    • Grant: All dangerous permission requests are granted. The user is not prompted.
    • Deny: All dangerous permission requests are denied. The user is not prompted.

    Default is Prompt.

  • Set an individual behavior for each permission group, for each app. To configure the behavior for a permission group: Click Add and then under App, choose an app from the list. If you configure Android Enterprise system apps, click Add new and enter the application package name you enabled in the Restrictions device policy. Under Grant Status, choose Prompt, Grant, or Deny. This grant status overrides the global status.
    • Prompt: Users are prompted to grant or deny dangerous permission requests from this permission group for this app.
    • Grant: Dangerous permission requests from this permission group for this app are granted. The user is not prompted.
    • Deny: Dangerous permission requests from this permission group for this app are denied. The user is not prompted.

    Default is Prompt.

  • Click Save next to the app and grant status.
  • To add more apps for the permission group, click Add again and repeat these steps.
  • When you have finished setting the Grant Status for permission groups, click Next.

如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。

扫码二维码加入Web技术交流群

发布评论

需要 登录 才能够评论, 你可以免费 注册 一个本站的账号。
列表为空,暂无数据

词条统计

浏览:79 次

字数:3803

最后编辑:7 年前

编辑次数:0 次

    我们使用 Cookies 和其他技术来定制您的体验包括您的登录状态等。通过阅读我们的 隐私政策 了解更多相关信息。 单击 接受 或继续使用网站,即表示您同意使用 Cookies 和您的相关数据。
    原文