By setting the security and privacy policy, you can perform the following settings on iOS devices registered on the Master Management Server (when using a 3-level structure) or Management Server (when using a 2-level structure):
Send diagnostic data to Apple
Accept untrusted TLS certificates
Encrypt backups
Steps to make prohibition effective through policy setting
Set policy
Set the policy in the Terminal Initial Settings window, or the window displayed after the Management Console is started (CT policy settings window).
In iOS > Security and privacy, set the items to be prohibited.
Reflect policy
The set policy will be reflected to the database.
Apply policy
The set policy will be applied to the iOS device.
Device feature operation
When using security and privacy-related features on an iOS device, the status will become one of the following:
Cannot use any security and privacy-related features
Can use only the permitted security and privacy features
Can use all security and privacy features
Refer to "2.4.1.24 Security and Privacy" for details on how to set the policy.