Configuring Risk Response Policies in Workspace ONE

Log in to the Workspace ONE UEM Console using your administrator account.
Create Smart Groups for Low, Medium, and High Risk devices:
1. In the left pane, navigate to GROUPS & SETTINGS > Groups > Assignment Groups, then click +ADD SMART GROUP.
2. In the Name field, enter Lookout Low Risk.
3. Select the appropriate Organization Group(s), then expand the Tags dropdown and select your low risk Tag, Lookout MES - Low Risk:
4. Click ADD.
5. Click SAVE.
  This creates a new Smart Group that automatically adds any devices tagged by Lookout as Low Risk, and automatically removes any devices that have the tag removed when a threat is resolved.
6. Repeat these steps to create Medium and High Risk groups.
Create an always-on security policy for compromised Android devices:
1. In the left pane, navigate to DEVICES > Profiles & Resources > Profiles, then click ADD > Add Profile.
2. On the Add Profile screen, click Android.
3. In the Name field, enter Lookout Low Risk Android.
4. In the Assigned Groups field, select the Lookout Low Risk Smart Group you created in Step 2:
5. Configure the rest of the profile settings based on your organization's security requirements.
  For example, you may wish to use the Application Control section to disable access to corporate apps.
6. Click SAVE AND PUBLISH.
7. Repeat these steps, but select the Apple iOS platform in order to create a policy for Low Risk iOS devices.
Repeat Step 3 to create Medium and High Risk policies.
If you create Android and iOS policies for each risk level, you will end up with a total of six policies.

Lookout Product Documentation

Find answers about using and optimizing Lookout products.

Configuring Risk Response Policies in Workspace ONE

lookout-footer