Help Center
14 DAY FREE TRIAL
Search result for "aa"
View all results

No Search Results

14 DAY FREE TRIAL
  1. Help Center
  2. Kiosk Lockdown of Devices
  3. Linux

Category filter

Set up Linux Kiosk Mode with a single app

Jump To

This document will guide you in configuring Linux kiosk mode with a single application using Hexnode.

In modern organizational environments, devices deployed in public-facing or shared spaces often need to be optimized for a single function, preventing users from accessing other system functions, settings, or unauthorized applications. Locking down a device to a specific application helps minimize distractions and restrict access to only the intended function. The Single App Kiosk for Linux remotely enforces kiosk settings on the endpoints, ensuring that only a specified app runs on the device.

Note:


The Linux single app kiosk mode only supports GUI (desktop) applications. Terminal-based and background applications, which lack a graphical user interface, are not supported.

Configure Single App Kiosk

Prerequisites:


Before associating the kiosk policy,

  • A local user account must be created on the Linux device to configure as the kiosk account.
  • The application to be added to kiosk mode must be installed on the device.

To configure single app kiosk mode on Linux,

  1. Login to your Hexnode UEM console.
  2. Navigate to the Policies tab.
  3. Click on New Policy to create a new policy or select an existing policy. Provide the name and description (optional) for the policy.
  4. Navigate to Kiosk Lockdown > Linux Kiosk Lockdown > Single App.
  5. Click on Configure.

    Configuring single app kiosk mode on Linux

    Upon clicking Configure, you will see the following options:

    • Kiosk Account Name: Provide the username for the account that will be configured as the kiosk account.
    • Click on the plus (+) sign to add the desired application to the kiosk. Select an application from the list of available options.
    • Next, you can configure Advanced Kiosk Settings:
      • Auto Login: When enabled, the device will automatically log in to the kiosk account without prompting for credentials.
        Note:


        If multiple desktop sessions are available for the user, the device will log in to the default session automatically.

  6. Click on Policy Targets and associate the policy with the target device(s).

How to associate the policy with devices?

If you haven’t saved the policy yet,

  1. Navigate to Policy Targets.
  2. Click on + Add Devices, search and select the required devices to which you need to apply the policy and click OK.
  3. Click on Save to apply the policies to the devices.

To associate the policies with a device group, select Device Groups from the left pane under Policy Targets, and follow the above instructions. Similarly, you can associate the policy with Users, User Groups, or Domains/OUs from the same pane.

If you’ve already saved the policy,

  1. Select the required policy, click on Manage and select Associate Targets.
  2. Select Device/ User/ Device Group/ User Group/ Domain/OUs.
  3. Search and select the devices/ users/ device groups/ user groups/ domains/OUs to which you need to apply the policy and click Associate.

What happens at the device end?

When Filelight is selected as the kiosk application in the policy, it will launch automatically on the device, and the device will enter kiosk mode, allowing access only to the Filelight app and restricting all other applications and system features.

Linux device in single app kiosk mode.

Need more help?
Image of Raise a Ticket Raise a Ticket
Image of Ask Community Ask Community
Image of Chat With us Chat With us
Kiosk Lockdown of Devices