![Full Logo.png]](https://help.devicie.com/hs-fs/hubfs/Full%20Logo.png?height=30&name=Full%20Logo.png){kind=small}
iOS Personal Basic Security Configuration
Overview:
The iOS Personal Basic provides an introductory baseline for organizations to uplift security for personally owned iOS devices.
Intune Description:
Basic security configuration for a personally owned, iOS mobile device.
Scope:
This template should be applied to iOS devices.
Policy Impact Areas:
When deployed, this policy will impact:
- Enforcing encrypted backups.
- Impact / limit functionality of Siri (while the device is locked).
-
Enforcing device reset after 10 repeated failed sign-in attempts.
Deployment Notes:
-
Pre-Deployment Considerations:
- None at this time.
-
Post-Deployment Validation:
-
Verify lock screen timeout (5 minutes) and password length enforcement (6+ characters).
-
Known Issues and Resolutions
-
Issue 1: None at this time
-
Resolution: N/A
-
Configuration Settings:
|
Name |
Value |
|
App Store, Doc Viewing, Gaming |
|
|
All enrollment types |
|
|
Block viewing corporate documents in unmanaged apps |
Not configured |
|
Allow unmanaged apps to read from managed contacts accounts |
Not configured |
|
Treat AirDrop as an unmanaged destination |
Yes |
|
Block viewing non-corporate documents in corporate apps |
Not configured |
|
Allow copy/paste to be affected by managed open-in |
Not configured |
|
Device enrollment and automated device enrollment |
|
|
Require iTunes Store password for all purchases |
Not configured |
|
Block in-app purchases |
Not configured |
|
Block download of explicit sexual content in Apple Books |
Not configured |
|
Allow managed apps to write contacts to unmanaged contacts accounts |
Not configured |
|
Ratings region |
No region configured |
|
Automated device enrollment |
|
|
Block App store |
Not configured |
|
Block installing apps using App Store |
Not configured |
|
Block automatic app downloads |
Not configured |
|
Block playback of explicit music, podcast, and iTunes U |
Not configured |
|
Block adding Game Center friends |
Not configured |
|
Block Game Center |
Not configured |
|
Block multiplayer gaming in the Game Center |
Not configured |
|
Block access to network drive in Files app |
Not configured |
|
Autonomous Single App Mode |
|
|
Automated device enrollment |
|
|
App name |
|
|
Built-in apps |
|
|
All enrollment types |
|
|
Block Siri |
Not configured |
|
Block Siri while device is locked |
Yes |
|
Require Safari fraud warnings |
Yes |
|
Device enrollment and automated device enrollment |
|
|
Block internet search results from Spotlight |
Not configured |
|
Safari cookies |
Not configured |
|
Block Safari JavaScript |
Not configured |
|
Block Safari pop-ups |
Not configured |
|
Block Siri for dictation |
Not configured |
|
Devicie Template Name |
iOS Personal Basic Security Configuration |
|
Default Intune Deployed Name |
Devicie - iOS Personal Basic Security Configuration |
|
Version |
1.0 |
|
Template Last Updated |
Jul 8, 2025 |
|
Document Last Updated: |
Jul 21, 2025 |