home

Mobile Endpoint Security

Lookout Product Documentation

Find answers about using and optimizing Lookout products.

The Policies Tab

Lookout has set default policy risk levels (none, low, medium, high) that are appropriate for most organizations. Use care if changing risk levels to avoid unintended conditions like blocking access to internal resources or causing unnecessary alerts on mobile devices.

Changing the risk level of an issue classification also applies to any existing, unresolved issues. For example, if you have open Spyware detections and you change Spyware from "Moderate" to "High" risk, those open detections become High risk.

You can discard customizations and restore the default settings at any time by clicking the Reset Defaults link in the upper-right.

The classifications are threat types that Lookout can detect on a device. You can export issue information to a CSV file by clicking the Export List link in the upper-right.

Each issue includes the following information:

  • Policy Type: Whether the threat affects or involves the device including the operating system, an application, the network, or the web and content.
  • Classification: The name of the issue.
  • OS: Whether the issue affects Android devices, Apple devices, or both.
  • Description: A brief summary of the classification.You can mouse over the ? icon for more details.
  • Risk Level: The severity of the issue. Lookout includes a set of default risk levels appropriate for most organizations. You can use the dropdown to set the risk levels appropriate to your organization. A device is given the highest risk level from any issues it has. For example, if a device has both a "Low" and a "High" risk issue, it is considered High risk.Lookout does not issue alerts or notifications for "None" severity issues, and devices with only "None" severity issues are still considered Secured.
  • Response: For each classification, you can either alert the end user of the device or choose not to alert them. If you have On Device Protection enabled, you can also block access to specific domains, or all internet access. For details, see Configuring On-Device Threat Protection.By default, Lookout alerts the device user for all issue classifications except for non-App Store or sideloaded apps, since organizations often distribute their own signed apps for internal use.