this post was submitted on 22 Jan 2024
678 points (94.5% liked)
People Twitter
5283 readers
1407 users here now
People tweeting stuff. We allow tweets from anyone.
RULES:
- Mark NSFW content.
- No doxxing people.
- Must be a tweet or similar
- No bullying or international politcs
- Be excellent to each other.
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Don't pay attention to this Joelle person, she has no idea what she's talking about (Or does and is spreading misinformation intentionally)
You literally can't "just install an MDM" to your phone in the way that allows a company complete access to your device. Both iOS and Android require that either the device is new or the device is factory reset. Then and only then can the device have MDM enabled as a "Company Owned Device" e.g. complete access.
The other way, is through "Work Profiles", it's an isolated and sandboxed partition. The "Work side" has no access to anything on the personal side and the personal side has no access to anything on the work side. On Android the work side has its own Play Store, its own Chrome, its own apps. (In fact, if you're rooted you can hijack work profiles for yourself if you want to install apps you'd rather keep isolated, like TikTok).
If I issue a wipe command to a phone with a work profile, only the work profile gets wiped and the personal side is untouched.
Hell, Android even gives you the ability to restrict the Work Profiles to work hours so all the work apps go dormant after 5
You can use Shelter to enable this functionality without root.
https://f-droid.org/packages/net.typeblog.shelter/
Some companies that have it set up incorrectly use the personal profile. If you join a company and they don't have you set up on a work profile you know their it practices are not the best
Companies with underfunded IT
Even if she is factually wrong about everything isn't it a good idea to get people to think more about what they put on their phones?
Yes, but not with lies.
There's also the option for MAM apps as well which I quite like as light touch management option for ios and android. Essentially limits control to select apps and even then just the company data in those apps.
Exactly.
These services are containerised on personal devices so that its services can only be administered within the app container.
It has limited to no control over the phone itself or apps outside of its MDM container in the context of personal devices.
Thank you for summing this up. Such a dumb post.
How do you schedule your work profile? I searched my settings for work profile related settings and don't see anything like that. Pixel 7A
The setting is in the wrong place in my view. It's under
"Digital Wellbeing & parental controls." > Work Profile Schedule
Simple from there.
I never look in parental controls as I have zero need so I had to look it up when I was searching for it. Personally I think "Digital Wellbeing" and "Parental Controls" should be entirely separate.
I set mine to come on an hour before and after work as a buffer and love it.
Yeah game changer, it will stop me getting sucked into email chains on an evening/weekend.. saves battery too.
Here you go: https://support.google.com/work/android/answer/7029561?hl=en
This is nice thanks