Business container controls the flow of personal and corporate data between the apps on iOS devices. It sets up a restriction to prevent users from opening managed documents in unmanaged destination or to prevent the users from accessing unmanaged documents in managed destination.
To Configure Business Container
- From your Hexnode MDM portal, head on to Policies tab.
- Create a new policy by clicking on New Policy button, or continue with an existing one.
- From iOS > Security, choose Business Container
You will have the following options to be configured.
|Open documents from managed apps in unmanaged apps||Documents from managed apps can be opened in unmanaged apps. If unchecked, such documents can be opened only in other managed apps. Allowed by default.|
|Open documents from unmanaged apps in managed apps||If this is disabled, the documents from unmanaged apps cannot be opened in managed apps. They can only be opened in other unmanaged apps. Allowed by default.|
|Managed apps can write to Unmanaged Contact Accounts.
(Supported only on devices running iOS 12.0+)
|This option enables you to allow managed apps to write to unmanaged contact accounts. However, this option will be disabled if the option Open documents from managed apps in unmanaged apps is enabled.|
|Unmanaged apps can read from Managed Contact Accounts.
(Supported only on devices running iOS 12.0+).
|This option enables you to allow unmanaged apps to read from managed contact accounts. However, this option will be disabled if the option Open documents from managed apps in unmanaged apps is enabled.|
|Block Sharing Managed Document using AirDrop||Block sharing documents from managed apps using AirDrop. This option is enabled only if Open documents from managed apps in unmanaged apps is checked.|
Once these options are configured, you need to associate these policies to devices.
To Associate Policies to Devices / Groups.
If the policy has not yet been saved.
- Navigate to Policy Targets.
- Click on +Add Devices.
- Select the devices and click OK.
- Click on Save to apply the policies to devices.
Apart from devices, you can also associate the policies to device groups, user and user groups from Policy Targets.
If the policy has been saved, you can associate it by another method.
- From Policies, check the policies to be associated.
- Click on Manage → Associate Targets and select the device.
- Click on Associate to apply policy to the devices.