Android Device Administrator Example


Android Device Administrator

Building an enterprise level app for android could have never been easier. With this Android Device Administrator Example, I would explain how to detect active Android device policy managers. As I explained in my previous tutorial about Android DevicePolicyManager that Android has an inbuilt framework to implement device administration policies. With help of these policies one can force a device to have security features like passwords with quality parameters, and to count the failed attempts for a password. Also you can disable the device camera with Android Device Administrator.

The way I visioned the working of Android Device Administration APIs for enterprise apps, was that they would come in a bunch where one app would be a device admin, implementing the policies on a device. While other apps would just check if the appropriate policy has been implemented or not. If not not then the access to those apps would be denied. For better understanding I divided the tutorial into two parts, in the first part I showed how to implement DevicePolicyManager class and in this second part I would show how to detect the active device admin:

  1. Android DevicePolicyManager Example
  2. Android Device Administrator Example

1. Android DevicePolicyManager

Again before moving ahead with the Android Device Administrator Example I would like to give a brief intro to Android DevicePolicy Manager class. Android DevicePolicyManager class is a class used to implement security policies on a device. These policies could be anything like, that a device should have a password, a policy can define the minimum length of a password, no of special characters etc. With a policy we can also disable camera, wipe user data, watch failed password attempts and also encrypt user data. For all this please read my first tutorial in this Android Device Administrator series where an implementation of Android DeviceAdminReceiver is shown with DevicePolicyManager.

2. Android Device Administrator APIs

In Android you can make your own Device Administrator with help of DevicePolicyManager class but now the task at hand is to detect the active Android Device Administrator through APIs. If you remember the package name that I used in my previous tutorial was com.truiton.devicepolicymanager. Now I would show how to detect if device administrator with this package name is active. To do that in a separate app please define the class as defined below:

In the above code I have called DevicePolicyManager.getActiveAdmins() method to retrieve the list of all the admins that are active at the moment. Now the interesting part here is that, since its returning a list; there could be more than one device admins in that list. The implied point here is that YES there can be more than one active Android Device Administrators on a device at a time but, keep in mind the strictest policy remains active.

In the above code, ComponentName.getPackageName() method is used to get the package name. Now since we know what package name we are looking for i.e. com.truiton.devicepolicymanager we can easily identify that, if the intended Android Device Administrator is active. Please have a look at the screenshot of logs:

Android Device Administrator API

With this I would sum up Android Device Administrator Example by saying you can create an app with which you can implement device administration policies. And create a separate app where you can detect those policies and do the desired function on your secure device. Although if you want a single app where you define policies, activate them and use them, that’s also possible 😉 . Hope this helps you, if it did please share it with your friends on Facebook, Google+ and also like our Facebook page to get our updates.

About Mohit Gupt

An android enthusiast, and an iPhone user with a keen interest in development of innovative applications.


Leave a comment

Your email address will not be published. Required fields are marked *

4 thoughts on “Android Device Administrator Example

  • wasim

    Thanks Mohit, you explained well about DevicePolicyManager class. but can you explain me how i can encrypt password and then how to compare(Encrypted) when user re-enter it.

    • Mohit Gupt Post author

      Hi,

      I think you can set an encrypted password, but cant get callbacks when user is entering a password in his device, as that would be a security breach. Also with this I think setting an encrypted password would not be appropriate as user wouldn’t know what’s the real password.
      -Mohit

  • Mohan

    Is it possible to detect Android application uninstall status. User uninstall the app we can call one service. Is it workout using Android Device Administrator APIs.