Version 5.6 introduces new features, support enhancements, and policies.
Google's Android Marshmallow (M) OS changes the permission model for apps. Apps are now required to prompt end-users for permissions at runtime instead of during installation. This new permission model allows users to modify the permissions granted by IT admins. Knox 5.6 provides the following capabilities to implement this feature:
- Device displays prompt to grant users permissions at run-time
- IT Admins can programmatically pre-grant or revoke dangerous app permissions
- Disables user option to uncheck permissions
Note that the programmatic changes are applicable at both the device level and the Knox container level.
Restricts internet access to a limited number of domains per application or device wide. You can now allow/block apps from accessing domain names specified by the given URLs.
- Google Play™ for Work (enable)
Allow Play for Work to manage apps on behalf of the enterprise. Note: This feature is currently supported for Knox container only.
- SE for Android Policy Delivery (SPD) updates
Enables the ability of an enterprise to enforce or disable usage of the SPD update mechanism.
You can enforce Application and Restriction Policies on phone to wearable devices.
New support enhancements:
- Device assistance for Default Application
You can now set default device assistance activity and service to provide integrated assistance to open other apps and enter text using voice inputs.
From now on only EDGE_FUNCTION_ALL can be passed as a parameter; any other combination of flags will return false.
You can now apply IPv6 rules when designing your firewall set of rules. IPv6 is supported for ALLOW and DENY rules. Provides APIs to configure firewall rules on device, providing the ability to implement security policies.
You can now get the list of system pre-loaded certificates for a specific user.
Android for Work (AfW):
- Enterprise Device Management Policy Group
Get policy instance:
- Exchange Account Management
API to force certificate from Universal Credential Manager (UCM):
Enable wearable policy:
- Security Policy Update Group
For more info about all the new API methods, helper classes, and constants as well as details about older SDK versions, see the Release Notes.