Integrity and Posture profiles (UI)
Configuring the Integrity and Posture policy
Use an Integrity and Posture profile to set these options with the Integrity and Posture policy. (See Policy profiles for general information about managing policy profiles.)
Click Apps, then Android or iOS, then the app you want to secure. The App details screen appears.
Click the settings gear on the Integrity and Posture panel. The Policy details page appears, where you can create a new profile or edit an existing profile.
On the Policy details page, click + Integrity and Posture Profile to create a new profile, or click the View/Edit profile (pencil) icon next to an existing profile to edit it.
On the Profile details page, enter the profile name and description, then select the desired fields.
Device Posture
Field | Description |
|---|---|
| Block jailbroken devices at app startup | If checked, the app cannot run if the device has been compromised via jailbreaking or rooting. |
| Require Device Screen Lock | If checked, the app requires a device-level PIN, password, or pattern to be configured on the device. |
| Require minimum-allowed Android version | Specifies the minimum-allowed version of Android that end users must have on their devices. The default value is Android 6.0, "Marshmallow." |
| Require minimum-allowed iOS version | Specifies the minimum-allowed version of iOS that end users must have on their devices. Blue Cedar Enforce is supported for iOS 9 and later. |
Integrity Verification
Field | Description |
|---|---|
| Protected files | Specifies which files to verify:
|
| Block devices upon tamper detection | If checked, the app terminates with an error message as soon as tampering is detected. If clear, the app continues, but the injectable reports the list of tampered files to the gateway at connection time, allowing the gateway to allow the app to connect, deny the connection, or notify administrators. |
| Use custom integrity certificate | Upload and use a custom PKCS #12 encoded certificate to verify that the app has been signed appropriately. |
Enabling the Integrity and Posture policy
Before enabling the Integrity and Posture policy, you must define a Integrity and Posture profile.
Click Apps, then Android or iOS, then the app you want to secure. The App details screen appears.
Under Policies to apply, click the triangle to expand the Integrity and Posture panel.
Select "Enable Integrity and Posture policy."
Choose an Integrity and Posture profile.
Click Apply policies.