Share via


EasClientSecurityPolicy Class

Definition

Note

EasClientSecurityPolicy may be unavailable for releases after Windows 10.

Modern mail apps evaluate and apply the EAS security policies. An EasClientSecurityPolicy object is constructed by the caller app to set policies received from the Exchange server or application.

public ref class EasClientSecurityPolicy sealed
/// [Windows.Foundation.Metadata.Activatable(65536, Windows.Security.ExchangeActiveSyncProvisioning.EasContract)]
/// [Windows.Foundation.Metadata.ContractVersion(Windows.Security.ExchangeActiveSyncProvisioning.EasContract, 65536)]
/// [Windows.Foundation.Metadata.Threading(Windows.Foundation.Metadata.ThreadingModel.Both)]
class EasClientSecurityPolicy final
/// [Windows.Foundation.Metadata.ContractVersion(Windows.Security.ExchangeActiveSyncProvisioning.EasContract, 65536)]
/// [Windows.Foundation.Metadata.Threading(Windows.Foundation.Metadata.ThreadingModel.Both)]
/// [Windows.Foundation.Metadata.Activatable(65536, "Windows.Security.ExchangeActiveSyncProvisioning.EasContract")]
class EasClientSecurityPolicy final
[Windows.Foundation.Metadata.Activatable(65536, typeof(Windows.Security.ExchangeActiveSyncProvisioning.EasContract))]
[Windows.Foundation.Metadata.ContractVersion(typeof(Windows.Security.ExchangeActiveSyncProvisioning.EasContract), 65536)]
[Windows.Foundation.Metadata.Threading(Windows.Foundation.Metadata.ThreadingModel.Both)]
public sealed class EasClientSecurityPolicy
[Windows.Foundation.Metadata.ContractVersion(typeof(Windows.Security.ExchangeActiveSyncProvisioning.EasContract), 65536)]
[Windows.Foundation.Metadata.Threading(Windows.Foundation.Metadata.ThreadingModel.Both)]
[Windows.Foundation.Metadata.Activatable(65536, "Windows.Security.ExchangeActiveSyncProvisioning.EasContract")]
public sealed class EasClientSecurityPolicy
function EasClientSecurityPolicy()
Public NotInheritable Class EasClientSecurityPolicy
Inheritance
Object Platform::Object IInspectable EasClientSecurityPolicy
Attributes

Windows requirements

Device family
Windows Desktop Extension SDK (introduced in 10.0.10240.0)
API contract
Windows.Security.ExchangeActiveSyncProvisioning.EasContract (introduced in v1.0)

Remarks

All of the property values for this class can be retrieved using get() only if the property values are previously set. Getting a policy value without previously setting it will result in HRESULT_FROM_WIN32(ERROR_NO_DATA) returned from the get() call.

Constructors

EasClientSecurityPolicy()

Note

EasClientSecurityPolicy may be unavailable for releases after Windows 10.

Creates an instance of an object that allows the caller app to set policies received from the Exchange server for evaluation or application.

Properties

DisallowConvenienceLogon

Note

EasClientSecurityPolicy may be unavailable for releases after Windows 10.

Gets or sets the ability to prevent convenience logons. DisallowConvenienceLogon is not defined in MS-ASPROV. It is mapped from MS-ASPROV AllowSimplePassword with respect to the Windows password policies.

When DevicePasswordEnabled is equal to TRUE, if AllowSimplePassword is TRUE, then DisallowConvenienceLogon should be set to FALSE. If AllowSimplePassword is FALSE, then DisallowConvenienceLogon should be set to TRUE.

MaxInactivityTimeLock

Note

EasClientSecurityPolicy may be unavailable for releases after Windows 10.

Gets or sets the maximum length of time the computer can remain inactive before it is locked. The MS-ASPROV name is MaxInactivityTimeDeviceLock.

MaxPasswordFailedAttempts

Note

EasClientSecurityPolicy may be unavailable for releases after Windows 10.

Gets or sets the maximum number of failed password attempts for logging on. The MS-ASPROV name is MaxDevicePasswordFailedAttempts.

The MaxPasswordFailedAttempts property is superseded by the MS-ASPROV DevicePasswordEnabled policy. If the caller received DevicePasswordEnabled equal to FALSE, do not set the MaxPasswordFailedAttempts property for evaluation or application. If the caller received DevicePasswordEnabled equal to TRUE, you can set the MaxPasswordFailedAttempts property for evaluation or application.

MinPasswordComplexCharacters

Note

EasClientSecurityPolicy may be unavailable for releases after Windows 10.

Gets or sets the minimum number of complex characters that are required for a password. The MS-ASPROV name is MinDevicePasswordComplexCharacters.

If the caller app receives MS-ASPROV AlphanumericDevicePasswordRequired equal to TRUE, then MinPasswordComplexCharacters must be set to be equal or greater than 2 for evaluation and application.

The MinPasswordComplexCharacters property is superseded by the MS-ASPROV DevicePasswordEnabled policy. If the caller received DevicePasswordEnabled equal to FALSE, do not set the MinPasswordComplexCharacters property for evaluation or application. If the caller received DevicePasswordEnabled equal to TRUE, you can set the MinPasswordComplexCharacters property for evaluation or application.

MinPasswordLength

Note

EasClientSecurityPolicy may be unavailable for releases after Windows 10.

Gets or set the minimum length of password allowed. The MS-ASPROV name is MinPasswordLength.

The MinPasswordLength property is superseded by the MS-ASPROV DevicePasswordEnabled policy. If the caller received DevicePasswordEnabled equal to FALSE, do not set the MinPasswordLength property for evaluation or application. If the caller received DevicePasswordEnabled equal to TRUE, you can set the MinPasswordLength property for evaluation or application.

PasswordExpiration

Note

EasClientSecurityPolicy may be unavailable for releases after Windows 10.

Gets or set the length of time that a password is valid. The MS-ASPROV name is DevicePasswordExpiration.

The PasswordExpiration property is superseded by the MS-ASPROV DevicePasswordEnabled policy. If the caller received DevicePasswordEnabled equal to FALSE, do not set the PasswordExpiration property for evaluation or application. If the caller received DevicePasswordEnabled equal to TRUE, you can set the PasswordExpiration property for evaluation or application.

PasswordHistory

Note

EasClientSecurityPolicy may be unavailable for releases after Windows 10.

Gets or set the password information previously used. The MS-ASPROV name is DevicePasswordHistory.

The PasswordHistory property is superseded by the MS-ASPROV DevicePasswordEnabled policy. If the caller received DevicePasswordEnabled equal to FALSE, do not set the PasswordHistory property for evaluation or application. If the caller received DevicePasswordEnabled equal to TRUE, you can set the PasswordHistory property for evaluation or application.

RequireEncryption

Note

EasClientSecurityPolicy may be unavailable for releases after Windows 10.

Gets or sets whether encryption is required. The MS-ASPROV name is RequireDeviceEncryption.

Methods

ApplyAsync()

Note

EasClientSecurityPolicy may be unavailable for releases after Windows 10.

Applies the EAS policies in asynchronous mode once the user consents.ApplyAsync is called by a UWP app for mail any time the app wants to make the local computer compliant.

CheckCompliance()

Note

EasClientSecurityPolicy may be unavailable for releases after Windows 10.

Evaluates the EAS policies.CheckCompliance is called by a UWP app for mail any time the app wants to evaluate whether the local computer is compliant to the given EAS policies. Because this call doesn't involve any UI interactions, it is a synchronous call.

Applies to