Application Compliance (Supervised)

The Application Compliance (Supervised) settings identify and categorize unsuitable apps, including native iOS apps, on a supervised device.

Note: The Phone app and the Settings app are restricted from being hidden on a device. Any restricted apps that are installed on the device can still appear in the list of installed apps on a device. If you are using basic MDM app compliance, the device might be out of compliance, even though the device user cannot use, view, or delete the app from their device.

Application Compliance (Supervised) settings

The following table describes the settings that the administrator can configure for unsuitable apps on a supervised iOS device:
Policy setting Description Supported devices
App Allowlist Configure Allowed Apps: The list of apps that are allowed on the device. The device allows only specific apps including those from the App Store apps, alternate marketplace apps, and apps installed locally using Configurator, Xcode, etc. Additionally, apps from the App catalog, MaaS360 apps, and web apps are automatically included. Any other app will be hidden and cannot be launched.

If you leave this field blank, only the apps listed in the allowlist apps under the Device Settings will be pushed to the device.

iOS 9.3+
App Blocklist Configure Blocked Apps: The list of installed apps, including system apps, that are blocked from the device. Apps that are blocklisted cannot be used on the device. This applies to App Store apps, alternate marketplace apps, and apps installed locally using Configurator, Xcode, etc.

If you leave this field blank, only the apps listed in the blacklist apps under the Device Settings will be pushed to the device.

iOS 9.3+
Auto Allowlist App Catalog Apps If enabled, the apps that are available in the App Catalog are automatically allowed on the device during enrollment. However, the subsequent additions or removals of apps are not be pushed to the device. To ensure a smooth experience, you must set up apps in the App Catalog and enable this setting before initiating device enrollment. In case any new apps are added after enrollment, you must manually allow them by adding those apps in App Allowlist > Configure Allowed Apps policy setting. iOS 9.3+