The use of Google's Android Management API is restricted solely to commercial Enterprise Mobility Management (EMM) developers and Device Trust from Android Enterprise (Device Trust) solution providers. All users of the Android Management API must comply with this Permissible Usage policy. Device Trust solution providers are Identity Providers (IDPs), Mobile Threat Defenders (MTDs), Endpoint Detection & Response (EDR), Security Information and Event Management (SIEM) and security operations tools. EMM developers and Device Trust solution providers are organizations that build device management and/or Device Trust solutions and offer their solutions to their end customers through commercial sales to entities outside of their immediate company or parent entity, and who support these end customers directly.
Device Trust signals provided by Android Management API are exclusively for providing Device Trust/enterprise IT security to end customers on both EMM-managed and non EMM-managed devices.
In order to access and use the Android Management API, EMM developers or Device Trust solution providers must:
- Have a direct agreement with its end customers, respectively, for the purposes of building device management and/or Device Trust solutions.
- Inform end customers and its users, as appropriate, about its access and use of data from its use of the Android Management API.
The following management scenarios and technology uses are not allowed:
- Device financing solutions (e.g. solutions intended to control device usage used in conjunction with hardware lease arrangements).
- Solutions developed exclusively for the purpose of device or user monitoring, fingerprinting, or eavesdropping independent of enterprise management.
- Alteration of a commercially available Android Device to subsequently sell, resell or lease such altered device.
- Push, preload or auto install applications and/or services on Android Devices without the express and informed prior consent of relevant customers and their end users.
- Solutions developed and used exclusively for first party in-house applications.
- Usage of the Android Management API policies & commands on non EMM-managed devices except for Device Trust solutions.
- Usage of the Device Trust signals with the legacy Device Admin functionality.
- Usage of the Device Trust signals in solutions using the accessibility APIs.
Google reserves the right to revoke access to the Android Management API or limit access to certain features if an EMM developer or Device Trust solution provider fails to comply with these usage requirements.
To inquire about potential usage of the Android Management API outside of the stated guidelines above, you can complete and submit this form.
Quotas and Restrictions
Android Management API enforces the following quotas and restrictions:
- Default quota of 500 registered devices for each project.
- Default quota of 1000 queries per 100 seconds for each project. For example, if you make 1000 requests in 1 second, you won't be able to make any more requests for the next 99 seconds.
- Applying
factoryResetDisabledandfrpAdminEmailssettings to aPolicywill be restricted until the 500 registered device quota is removed.
You can request a quota increase and/or the removal of restrictions using this form.