Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Namespace: microsoft.graph
Note: The Microsoft Graph API for Intune requires an active Intune license for the tenant.
Create a new iosCompliancePolicy object.
This API is available in the following national cloud deployments.
| Global service | US Government L4 | US Government L5 (DOD) | China operated by 21Vianet |
|---|---|---|---|
| ✅ | ✅ | ✅ | ✅ |
Permissions
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see Permissions.
| Permission type | Permissions (from least to most privileged) |
|---|---|
| Delegated (work or school account) | DeviceManagementConfiguration.ReadWrite.All |
| Delegated (personal Microsoft account) | Not supported. |
| Application | DeviceManagementConfiguration.ReadWrite.All |
HTTP Request
POST /deviceManagement/deviceCompliancePolicies
Request headers
| Header | Value |
|---|---|
| Authorization | Bearer {token}. Required. Learn more about authentication and authorization. |
| Accept | application/json |
Request body
In the request body, supply a JSON representation for the iosCompliancePolicy object.
The following table shows the properties that are required when you create the iosCompliancePolicy.
| Property | Type | Description |
|---|---|---|
| id | String | Key of the entity. Inherited from deviceCompliancePolicy |
| createdDateTime | DateTimeOffset | DateTime the object was created. Inherited from deviceCompliancePolicy |
| description | String | Admin provided description of the Device Configuration. Inherited from deviceCompliancePolicy |
| lastModifiedDateTime | DateTimeOffset | DateTime the object was last modified. Inherited from deviceCompliancePolicy |
| displayName | String | Admin provided name of the device configuration. Inherited from deviceCompliancePolicy |
| version | Int32 | Version of the device configuration. Inherited from deviceCompliancePolicy |
| passcodeBlockSimple | Boolean | Indicates whether or not to block simple passcodes. |
| passcodeExpirationDays | Int32 | Number of days before the passcode expires. Valid values 1 to 65535 |
| passcodeMinimumLength | Int32 | Minimum length of passcode. Valid values 4 to 14 |
| passcodeMinutesOfInactivityBeforeLock | Int32 | Minutes of inactivity before a passcode is required. |
| passcodePreviousPasscodeBlockCount | Int32 | Number of previous passcodes to block. Valid values 1 to 24 |
| passcodeMinimumCharacterSetCount | Int32 | The number of character sets required in the password. |
| passcodeRequiredType | requiredPasswordType | The required passcode type. Possible values are: deviceDefault, alphanumeric, numeric. |
| passcodeRequired | Boolean | Indicates whether or not to require a passcode. |
| osMinimumVersion | String | Minimum IOS version. |
| osMaximumVersion | String | Maximum IOS version. |
| securityBlockJailbrokenDevices | Boolean | Indicates the device should not be jailbroken. When TRUE, if the device is detected as jailbroken it will be reported non-compliant. When FALSE, the device is not reported as non-compliant regardless of device jailbroken state. Default is FALSE. |
| deviceThreatProtectionEnabled | Boolean | Require that devices have enabled device threat protection . |
| deviceThreatProtectionRequiredSecurityLevel | deviceThreatProtectionLevel | Require Mobile Threat Protection minimum risk level to report noncompliance. Possible values are: unavailable, secured, low, medium, high, notSet. |
| managedEmailProfileRequired | Boolean | Indicates whether or not to require a managed email profile. |
Response
If successful, this method returns a 201 Created response code and a iosCompliancePolicy object in the response body.
Example
Request
Here is an example of the request.
POST https://graph.microsoft.com/v1.0/deviceManagement/deviceCompliancePolicies
Content-type: application/json
Content-length: 745
{
"@odata.type": "#microsoft.graph.iosCompliancePolicy",
"description": "Description value",
"displayName": "Display Name value",
"version": 7,
"passcodeBlockSimple": true,
"passcodeExpirationDays": 6,
"passcodeMinimumLength": 5,
"passcodeMinutesOfInactivityBeforeLock": 5,
"passcodePreviousPasscodeBlockCount": 2,
"passcodeMinimumCharacterSetCount": 0,
"passcodeRequiredType": "alphanumeric",
"passcodeRequired": true,
"osMinimumVersion": "Os Minimum Version value",
"osMaximumVersion": "Os Maximum Version value",
"securityBlockJailbrokenDevices": true,
"deviceThreatProtectionEnabled": true,
"deviceThreatProtectionRequiredSecurityLevel": "secured",
"managedEmailProfileRequired": true
}
Response
Here is an example of the response. Note: The response object shown here may be truncated for brevity. All of the properties will be returned from an actual call.
HTTP/1.1 201 Created
Content-Type: application/json
Content-Length: 917
{
"@odata.type": "#microsoft.graph.iosCompliancePolicy",
"id": "4f501351-1351-4f50-5113-504f5113504f",
"createdDateTime": "2017-01-01T00:02:43.5775965-08:00",
"description": "Description value",
"lastModifiedDateTime": "2017-01-01T00:00:35.1329464-08:00",
"displayName": "Display Name value",
"version": 7,
"passcodeBlockSimple": true,
"passcodeExpirationDays": 6,
"passcodeMinimumLength": 5,
"passcodeMinutesOfInactivityBeforeLock": 5,
"passcodePreviousPasscodeBlockCount": 2,
"passcodeMinimumCharacterSetCount": 0,
"passcodeRequiredType": "alphanumeric",
"passcodeRequired": true,
"osMinimumVersion": "Os Minimum Version value",
"osMaximumVersion": "Os Maximum Version value",
"securityBlockJailbrokenDevices": true,
"deviceThreatProtectionEnabled": true,
"deviceThreatProtectionRequiredSecurityLevel": "secured",
"managedEmailProfileRequired": true
}