Contains standard security policy identifiers.
Declaration Syntax| C# | Visual Basic |
public enum SecurityPolicy
Public Enumeration SecurityPolicy
Members| Member | Description |
|---|---|
| AutoRun |
This setting indicates whether applications stored on a storage card are allowed to auto-run when inserted into the device.
|
| Rapi |
This setting restricts the access of remote applications that are using Remote API (RAPI) to implement ActiveSync operations on Windows Mobile powered devices.
|
| UnsignedCabs |
This setting indicates whether unsigned .cab files can be installed on the device.
|
| UnsignedApplications |
Indicates whether unsigned applications are allowed to run on Windows Mobile powered devices.
|
| UnsignedThemes |
Indicates whether theme files can be installed on the device.
|
| TpsCarrierRole |
Indicates whether mobile operators can be assigned the Trusted Provisioning Server (TPS) role.
|
| MaxAuthenticationRetry |
Specifies the maximum number of times the user is allowed to try authenticating a Wireless Application Protocol (WAP) PIN-signed message.
|
| SLMessage |
Indicates whether SL messages are accepted.
An SL message downloads new services or provisioning XML to the Windows Mobile powered device.
|
| SIMessage |
Indicates whether SI messages are accepted.
An SI message is sent to Windows Mobile 6 Standard to notify users of new services, service updates, and provisioning services.
|
| UnauthenticatedMessages |
Indicates whether to accept unsigned WAP messages processed by the default security provider in the Security Module (Push Router), based on their origin.
|
| OtaProvisioning |
Specifies which provisioning messages are accepted by the configuration host based on the roles assigned to the messages.
|
| WspNotifications |
This setting indicates whether Wireless Session Protocol (WSP) notifications from the WAP stack are routed.
|
| GrantManager |
This setting grants the system administrative privileges held by SECROLE_MANAGER to other security roles, without modifying metabase role assignments.
|
| GrantUserAuthenticated |
This setting grants privileges held by SECROLE_USER_AUTH to other security roles without modifying metabase role assignments.
|
| TrustedWapProxy |
This setting specifies the level of permissions required to create, modify, or delete a trusted proxy.
WAP proxies are configured by means of the PXLOGICAL characteristic element in a WAP provisioning XML document.
A WAP proxy is trusted when the TRUST parameter is specified in the PXLOGICAL characteristic element.
|
| UnsignedPrompt |
This setting indicates whether a user is prompted to accept or reject unsigned .cab, theme, .dll and .exe files.
|
| PrivilegedApplications |
This setting specifies which security model is implemented on the device.
|
| SLSecureDownload |
This setting allows the operator to override https to use http or wsps to use wsp.
|
| SoftwareCertificates |
This setting determines whether software certificates can be used to sign outgoing messages.
You can use this security policy with a tool that you create to allow people to import certificates.
|
| DrmWapRights |
This setting specifies which DRM rights messages are accepted by the DRM engine based on the role assigned to the message.
|
| LassPasswordRequired |
This policy indicates whether a password must be configured on the device.
|
| WapNetworkPinPrompt |
This setting is used when the over the air (OTA) OMA Client Provisioning message is signed with only a network personal identification number (PIN).
This setting indicates whether or not to prompt the user to accept device setting changes.
|
| MobileEncryptRemovable |
This setting specifies if the user is allowed to change mobile encryption settings for the removable storage media.
|
| Bluetooth |
This setting specifies if a Bluetooth enabled device allows other devices to perform a search on the device.
|
| HtmlMessage |
This setting specifies whether message transports will allow HTML messages.
|
| SMimeSigning |
This setting specifies whether the Inbox application will send all messaged signed.
|
| SMimeEncryption |
This setting specifies whether the Inbox application will send all messages encrypted.
|
| SMimeSigningAlgorithm |
This setting specifies which algorithm to use to sign a message.
|
| SMimeEncryptionAlgorithm |
This setting specifies which algorithm to use to encrypt a message.
|
| OmaCPNetworkPinMessage |
This setting determines whether the OMA network PIN signed message will be accepted.
The message's role mask and the policy's role mask are combined using the AND operator.
If the result is non-zero, then the message is accepted.
|
| OmaCPUserPinMessage |
This setting determines whether the OMA user PIN or user MAC signed message will be accepted.
The message's role mask and the policy's role mask are combined using the AND operator.
If the result is non-zero, then the message is accepted.
|
| OmaCPUserNetworkPinMessage |
This setting determines whether the OMA user network PIN signed message will be accepted.
The message's role mask and the policy's role mask are combined using the AND operator.
If the result is non-zero, then the message is accepted.
|
| SMimeEncryptionNegotiation |
This setting specifies whether the Inbox application can negotiate the encryption algorithm in case a recipient's certificate does not support the specified encryption algorithm.
|
| SharepointUncProtocolAccess |
This setting enables or disables Outlook Mobile SharePoint or UNC access through ActiveSync protocol to get documents.
|
| LassDesktopQuickConnect |
This setting specifies how device authentication is handled when connecting to the desktop.
|