Configuring conditional access for a device

Conditional access determines whether the application can be accessed from a mobile device, based on the device compliance with the IBM MaaS360 IT policy.

Before you begin

  • You must have administrative permission to complete this task.
  • Log in to the IBM® Security Verify administration console as an Administrator.

About this task

Jamf does not provide device compliance status. The compliance status for Jamf enrolled devices is shown as UNKNOWN.

You can configure conditional access when you create or update an application instance.

A mobile device can be:
Managed and compliant

The mobile device is enrolled in a device manager and complies with the device manager IT policy.

Managed and non-compliant

The mobile device is enrolled in a device manager, but it is not compliant with the device manager IT policy.

Unmanaged

The mobile device is NOT enrolled in a device manager, as such it is unmanaged.

Procedure

  1. Select Applications > Applications.
  2. Hover over an application name and select the settings icon Settings.
  3. Navigate to the application's Sign-on tab.
  4. On the Access Policy section, select the policy that determines how users can access the application.

    You can continue to use the default access policy that is assigned, which is Allow access from all devices. Alternatively, you can select from the list of predefined access policies. For more information, see Access policies.