IBM MaaS360

IBM MaaS360

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only

MaaS360: Ask Me Anything about Compliance Rules

By Will Davis posted Fri September 20, 2024 02:33 PM

  

We hope you enjoyed our recent Ask Me Anything on MaaS360 Compliance Rules. In this blog, we've summarized the key points and added some frequently asked questions (FAQs) to help you better understand the features and improvements. 

You can find the September 18, 2024 replay and presentation here. Maas360 Ask Me Anything Compliance Rules

Key Takeaways:

  • Compliance Rule Basics:
    • Compliance rules take enforcement actions on devices that are out of compliance for any number of reasons.
    •  Different rules can have different actions and different emails alerted.
    • Devices can be marked as Exempt from Compliance rules.
  •   What rules can be enforced?
    •  Enrollment status
    • OS version
      •  Version Ranges
      • Allowed Versions
      • Disallowed Versions
    • Remote wipe Support
    • Encryption Support
    • Application Compliance
    • Jailbroken or Rooted status
  • Stack your actions to get the most out of each rule.
  • Are your devices at their required locations?
    • Create Locations and use Compliance rules to take actions when they move.
  • Are your devices using too much data?
    •  Create Expense Management Plans and use compliance rules to take actions when different percentage thresholds are reached.
  • Build your own enforcement rules with Group Based Rules
    • Create a group filter that catches the devices
    • Select the group in the rule and specify your actions
    • Assign the compliance rule to the group
  • Use the Compliance Log to see all compliance actions in one place.

FAQs:

Q: Where do I go to create new Compliance Rules?

A: Security>Compliance Rules then select the “Add Rule Set” in the top right.

Q: I don’t see the option to “Remove Control” or “Block” in my actions list?

A: Different Enforcement Rules will have different actions available to them, you should see Remove Control in other rule options. The Block action requires a Cloud Extender with integration to your mail environment to be configured. The block action specifically refers to mail flow to a corporate email server.

Q: Can I have multiple OS ranges in one rule set?

A: You can only have one OS range per operating system type. If you need a different range for older devices then that would be a good time to have a second rule set.

Q: How do I add apps to the Application Compliance rule?

A: Application Compliance references your Policy for the Application Compliance options. To add new apps to the list you will have to edit your policies.

We appreciate your continued support and look forward to helping you make the most of these new features. Don't forget to check out the recording and documentation for more information!


Best Regards,
IBM MaaS360 Customer Success Team

0 comments
17 views

Permalink

https://community.ibm.com/community/user/blogs/will-davis/2024/09/20/maas360-ask-me-anything-compliance-rules