Menu path: [Mobile device profile] > Code

In this area, you can change passcode settings.

  • Require Passcode on Device: Enforce entering a passcode before using the device. (Default: enabled)
  • Allow Simple Values: Permits users to use sequential or repeated characters in their passcodes. For example, “3333” or “DEFG”. (Default: enabled)
  • Require Alphanumeric: Requires that the passcode contain at least one letter or number. (Default: disabled)
  • Minimum Passcode Length: Specifies the minimum number of characters a passcode can contain.
  • Min Complex Chars: Specifies the number of non-alphanumeric characters (such as $ and !) the passcode must contain.
  • Maximum Passcode Age: Requires users to change their passcode at the interval you specify. It can be set to --, or from 1 to 730 days.
  • Auto-Lock: If the device isn’t used for the period of time you specify, it automatically locks. It can be set to --, or set to lock after 1 to 5 minutes. Enter the passcode to unlock the device.
  • Passcode History: The device refuses a new passcode if it matches a previously used passcode. You can specify how many previous passcodes are remembered and compared. It can be set to --, or from 1 to 50 passcodes.
  • Grace Period for Device Lock: Specifies how soon the device can be unlocked again after use, without reprompting again for the passcode.
  • Max Failed Attempts: The number of failed passcode attempts that can be made before an iOS device is erased or locked.
    If you don’t change this setting, after six failed attempts, the device imposes a time delay before a passcode can be entered again.
    The time delay increases with each failed attempt. After the final failed attempt, all data and settings are securely erased from the iOS device. The device locks after the final attempt.
    The passcode time delay begins after the sixth attempt, so if you set this value to 6 or lower, no time delay is imposed and the device is erased when the attempt limit is exceeded.