Contact Us
Help Center Home > Create an iOS/iPadOS Google OAuth Policy

Create an iOS/iPadOS Google OAuth Policy

This policy remotely configures Google OAuth accounts on managed iOS and iPadOS devices, ensuring users have seamless and secure access to their corporate email, calendars, and contacts. By automating this deployment, organizations can enhance user productivity while maintaining a standardized and secure authentication environment across the fleet.

Prerequisites:

  • iOS/iPadOS devices must be enrolled in Apple MDM with the following enrollment type:
    • Automated Device Enrollment (ADE) - These devices are owned and enrolled by the corporation through ADE.
    • Device Enrollment - These devices are owned by the corporation, and enrolled by the admin or by the user.
    • User Enrollment - These are personal devices used for work where the user enrolls the device to securely access corporate data while maintaining personal privacy.
      For more information, see Choose an MDM Enrollment Method to learn more.
  • Target devices must be running iOS/iPadOS 14 or later.

Creating the Policy

To create the policy:

  1. Log in to the JumpCloud Admin Portal.

Important:

If your data is stored outside of the US, check which login URL you should be using depending on your region, see JumpCloud Data Centers to learn more.

  1. Go to Device Management > Policy Management and click (+).
  2. On the New Policy panel, select the iOS tab.
  3. Search and select Google OAuth from the list, then click configure.
  4. (Optional) In the Policy Name field, enter a new name for the policy or keep the default. Policy names must be unique.
  5. (Optional) In the Policy Notes field, enter details such as creation date of the policy, and information on testing and deployment of the policy.
  6. Configure the following policy settings:
    • Account Description - Enter a short description for your Google account.
    • Account Name - Enter the server address for your contacts. 
    • Email Address (Required) - Enter the full Google email address for this account for example, user@gmail.com or user@company.com.
    • Communication Service Handlers - Define specific rules for how apps and services interact with this account, ensuring your Google data is handled correctly by authorized communication services.
      • Service Type - Choose the specific communication service you want to manage for this account, such as Audio Call, Video Call, or Messaging. This tells the system exactly which functions this account should handle.
      • Bundle Identifier - Enter the unique application ID for example, com.google.Hangouts or com.google.chat,  that is authorized to manage the communication services for this account. This ensures your data stays within the correct, secure app.
    • Per-App VPN UUID - Enter the VPNUUID of the per-app VPN the account uses for network communication. This is available in iOS 14 and later.
  7. (Optional) Select the Device Groups tab. Select one or more device groups where you want to apply this policy. For device groups with multiple OS member types, the policy is applied only to the supported OS.
  8. (Optional) Select the Devices tab. Select one or more devices where you want to apply this policy.
  9. Click Save. If prompted, click Save again. The policy configuration settings are applied automatically and do not require a system restart.
Back to Top

Notebook IconLearn More

Apple MDM

Choose an MDM Enrollment Method

Still Have Questions?

If you cannot find an answer to your question in our FAQ, you can always contact us.

Submit a Case