google-apis-rs/google_androidmanagement1_cli/search/search_index.json

{"config":{"indexing":"full","lang":["en"],"min_search_length":3,"prebuild_index":false,"separator":"[\\s\\-]+"},"docs":[{"location":"","text":"The androidmanagement1 command-line interface (CLI) allows to use most features of the Google Android Management service from the comfort of your terminal. By default all output is printed to standard out, but flags can be set to direct it into a file independent of your shell's capabilities. Errors will be printed to standard error, and cause the program's exit code to be non-zero. If data-structures are requested, these will be returned as pretty-printed JSON, to be useful as input to other tools. Everything else about the Android Management API can be found at the official documentation site . Installation and Source Code Install the command-line interface with cargo using: cargo install google-androidmanagement1-cli Find the source code on github . Usage This documentation was generated from the Android Management API at revision 20240221 . The CLI is at version 5.0.4 . androidmanagement1 [options] enterprises applications-get <name> [-p <v>]... [-o <out>] create (-r <kv>)... [-p <v>]... [-o <out>] delete <name> [-p <v>]... [-o <out>] devices-delete <name> [-p <v>]... [-o <out>] devices-get <name> [-p <v>]... [-o <out>] devices-issue-command <name> (-r <kv>)... [-p <v>]... [-o <out>] devices-list <parent> [-p <v>]... [-o <out>] devices-operations-cancel <name> [-p <v>]... [-o <out>] devices-operations-get <name> [-p <v>]... [-o <out>] devices-operations-list <name> [-p <v>]... [-o <out>] devices-patch <name> (-r <kv>)... [-p <v>]... [-o <out>] enrollment-tokens-create <parent> (-r <kv>)... [-p <v>]... [-o <out>] enrollment-tokens-delete <name> [-p <v>]... [-o <out>] enrollment-tokens-get <name> [-p <v>]... [-o <out>] enrollment-tokens-list <parent> [-p <v>]... [-o <out>] get <name> [-p <v>]... [-o <out>] list [-p <v>]... [-o <out>] migration-tokens-create <parent> (-r <kv>)... [-p <v>]... [-o <out>] migration-tokens-get <name> [-p <v>]... [-o <out>] migration-tokens-list <parent> [-p <v>]... [-o <out>] patch <name> (-r <kv>)... [-p <v>]... [-o <out>] policies-delete <name> [-p <v>]... [-o <out>] policies-get <name> [-p <v>]... [-o <out>] policies-list <parent> [-p <v>]... [-o <out>] policies-patch <name> (-r <kv>)... [-p <v>]... [-o <out>] web-apps-create <parent> (-r <kv>)... [-p <v>]... [-o <out>] web-apps-delete <name> [-p <v>]... [-o <out>] web-apps-get <name> [-p <v>]... [-o <out>] web-apps-list <parent> [-p <v>]... [-o <out>] web-apps-patch <name> (-r <kv>)... [-p <v>]... [-o <out>] web-tokens-create <parent> (-r <kv>)... [-p <v>]... [-o <out>] provisioning-info get <name> [-p <v>]... [-o <out>] signup-urls create [-p <v>]... [-o <out>] androidmanagement1 --help Configuration: [--scope <url>]... Specify the authentication a method should be executed in. Each scope requires the user to grant this application permission to use it. If unset, it defaults to the shortest scope url for a particular method. --config-dir <folder> A directory into which we will store our persistent data. Defaults to a user-writable directory that we will create during the first invocation. [default: ~/.google-service-cli] Configuration The program will store all persistent data in the ~/.google-service-cli directory in JSON files prefixed with androidmanagement1- . You can change the directory used to store configuration with the --config-dir flag on a per-invocation basis. More information about the various kinds of persistent data are given in the following paragraphs. Authentication Most APIs require a user to authenticate any request. If this is the case, the scope determines the set of permissions granted. The granularity of these is usually no more than read-only or full-access . If not set, the system will automatically select the smallest feasible scope, e.g. when invoking a method that is read-only, it will ask only for a read-only scope. You may use the --scope flag to specify a scope directly. All applicable scopes are documented in the respective method's CLI documentation. The first time a scope is used, the user is asked for permission. Follow the instructions given by the CLI to grant permissions, or to decline. If a scope was authenticated by the user, the respective information will be stored as JSON in the configuration directory, e.g. ~/.google-service-cli/androidmanagement1-token-<scope-hash>.json . No manual management of these tokens is necessary. To revoke granted authentication, please refer to the official documentation . Application Secrets In order to allow any application to use Google services, it will need to be registered using the Google Developer Console . APIs the application may use are then enabled for it one by one. Most APIs can be used for free and have a daily quota. To allow more comfortable usage of the CLI without forcing anyone to register an own application, the CLI comes with a default application secret that is configured accordingly. This also means that heavy usage all around the world may deplete the daily quota. You can workaround this limitation by putting your own secrets file at this location: ~/.google-service-cli/androidmanagement1-secret.json , assuming that the required androidmanagement API was enabled for it. Such a secret file can be downloaded in the Google Developer Console at APIs & auth -> Credentials -> Download JSON and used as is. Learn more about how to setup Google projects and enable APIs using the official documentation . Debugging Even though the CLI does its best to provide usable error messages, sometimes it might be desirable to know what exactly led to a particular issue. This is done by allowing all client-server communication to be output to standard error as-is . The --debug flag will print errors using the Debug representation to standard error. You may consider redirecting standard error into a file for ease of use, e.g. androidmanagement1 --debug <resource> <method> [options] 2>debug.txt .","title":"Home"},{"location":"#installation-and-source-code","text":"Install the command-line interface with cargo using: cargo install google-androidmanagement1-cli Find the source code on github .","title":"Installation and Source Code"},{"location":"#usage","text":"This documentation was generated from the Android Management API at revision 20240221 . The CLI is at version 5.0.4 . androidmanagement1 [options] enterprises applications-get <name> [-p <v>]... [-o <out>] create (-r <kv>)... [-p <v>]... [-o <out>] delete <name> [-p <v>]... [-o <out>] devices-delete <name> [-p <v>]... [-o <out>] devices-get <name> [-p <v>]... [-o <out>] devices-issue-command <name> (-r <kv>)... [-p <v>]... [-o <out>] devices-list <parent> [-p <v>]... [-o <out>] devices-operations-cancel <name> [-p <v>]... [-o <out>] devices-operations-get <name> [-p <v>]... [-o <out>] devices-operations-list <name> [-p <v>]... [-o <out>] devices-patch <name> (-r <kv>)... [-p <v>]... [-o <out>] enrollment-tokens-create <parent> (-r <kv>)... [-p <v>]... [-o <out>] enrollment-tokens-delete <name> [-p <v>]... [-o <out>] enrollment-tokens-get <name> [-p <v>]... [-o <out>] enrollment-tokens-list <parent> [-p <v>]... [-o <out>] get <name> [-p <v>]... [-o <out>] list [-p <v>]... [-o <out>] migration-tokens-create <parent> (-r <kv>)... [-p <v>]... [-o <out>] migration-tokens-get <name> [-p <v>]... [-o <out>] migration-tokens-list <parent> [-p <v>]... [-o <out>] patch <name> (-r <kv>)... [-p <v>]... [-o <out>] policies-delete <name> [-p <v>]... [-o <out>] policies-get <name> [-p <v>]... [-o <out>] policies-list <parent> [-p <v>]... [-o <out>] policies-patch <name> (-r <kv>)... [-p <v>]... [-o <out>] web-apps-create <parent> (-r <kv>)... [-p <v>]... [-o <out>] web-apps-delete <name> [-p <v>]... [-o <out>] web-apps-get <name> [-p <v>]... [-o <out>] web-apps-list <parent> [-p <v>]... [-o <out>] web-apps-patch <name> (-r <kv>)... [-p <v>]... [-o <out>] web-tokens-create <parent> (-r <kv>)... [-p <v>]... [-o <out>] provisioning-info get <name> [-p <v>]... [-o <out>] signup-urls create [-p <v>]... [-o <out>] androidmanagement1 --help Configuration: [--scope <url>]... Specify the authentication a method should be executed in. Each scope requires the user to grant this application permission to use it. If unset, it defaults to the shortest scope url for a particular method. --config-dir <folder> A directory into which we will store our persistent data. Defaults to a user-writable directory that we will create during the first invocation. [default: ~/.google-service-cli]","title":"Usage"},{"location":"#configuration","text":"The program will store all persistent data in the ~/.google-service-cli directory in JSON files prefixed with androidmanagement1- . You can change the directory used to store configuration with the --config-dir flag on a per-invocation basis. More information about the various kinds of persistent data are given in the following paragraphs.","title":"Configuration"},{"location":"#authentication","text":"Most APIs require a user to authenticate any request. If this is the case, the scope determines the set of permissions granted. The granularity of these is usually no more than read-only or full-access . If not set, the system will automatically select the smallest feasible scope, e.g. when invoking a method that is read-only, it will ask only for a read-only scope. You may use the --scope flag to specify a scope directly. All applicable scopes are documented in the respective method's CLI documentation. The first time a scope is used, the user is asked for permission. Follow the instructions given by the CLI to grant permissions, or to decline. If a scope was authenticated by the user, the respective information will be stored as JSON in the configuration directory, e.g. ~/.google-service-cli/androidmanagement1-token-<scope-hash>.json . No manual management of these tokens is necessary. To revoke granted authentication, please refer to the official documentation .","title":"Authentication"},{"location":"#application-secrets","text":"In order to allow any application to use Google services, it will need to be registered using the Google Developer Console . APIs the application may use are then enabled for it one by one. Most APIs can be used for free and have a daily quota. To allow more comfortable usage of the CLI without forcing anyone to register an own application, the CLI comes with a default application secret that is configured accordingly. This also means that heavy usage all around the world may deplete the daily quota. You can workaround this limitation by putting your own secrets file at this location: ~/.google-service-cli/androidmanagement1-secret.json , assuming that the required androidmanagement API was enabled for it. Such a secret file can be downloaded in the Google Developer Console at APIs & auth -> Credentials -> Download JSON and used as is. Learn more about how to setup Google projects and enable APIs using the official documentation .","title":"Application Secrets"},{"location":"#debugging","text":"Even though the CLI does its best to provide usable error messages, sometimes it might be desirable to know what exactly led to a particular issue. This is done by allowing all client-server communication to be output to standard error as-is . The --debug flag will print errors using the Debug representation to standard error. You may consider redirecting standard error into a file for ease of use, e.g. androidmanagement1 --debug <resource> <method> [options] 2>debug.txt .","title":"Debugging"},{"location":"enterprises_applications-get/","text":"Gets info about an application. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises applications-get ... Required Scalar Argument <name> (string) The name of the application in the form enterprises/{enterpriseId}/applications/{package_name}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p language-code=string The preferred language for localized application info, as a BCP47 tag (e.g. \"en-US\", \"de\"). If not specified the default language of the application will be used. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Applications Get"},{"location":"enterprises_applications-get/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises applications-get ...","title":"Scopes"},{"location":"enterprises_applications-get/#required-scalar-argument","text":"<name> (string) The name of the application in the form enterprises/{enterpriseId}/applications/{package_name}.","title":"Required Scalar Argument"},{"location":"enterprises_applications-get/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_applications-get/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p language-code=string The preferred language for localized application info, as a BCP47 tag (e.g. \"en-US\", \"de\"). If not specified the default language of the application will be used.","title":"Optional Method Properties"},{"location":"enterprises_applications-get/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_create/","text":"Creates an enterprise. This is the last step in the enterprise signup flow. See also: SigninDetail Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises create ... Required Request Value The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: Enterprise: app-auto-approval-enabled: boolean contact-info: contact-email: string data-protection-officer-email: string data-protection-officer-name: string data-protection-officer-phone: string eu-representative-email: string eu-representative-name: string eu-representative-phone: string enabled-notification-types: [string] enterprise-display-name: string logo: sha256-hash: string url: string name: string primary-color: integer pubsub-topic: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . app-auto-approval-enabled=true Deprecated and unused. contact-info contact-email=voluptua. Email address for a point of contact, which will be used to send important announcements related to managed Google Play. data-protection-officer-email=at The email of the data protection officer. The email is validated but not verified. data-protection-officer-name=sanctus The name of the data protection officer. data-protection-officer-phone=sed The phone number of the data protection officer The phone number is validated but not verified. eu-representative-email=amet. The email of the EU representative. The email is validated but not verified. eu-representative-name=takimata The name of the EU representative. eu-representative-phone=amet. The phone number of the EU representative. The phone number is validated but not verified. .. enabled-notification-types=duo The types of Google Pub/Sub notifications enabled for the enterprise. Each invocation of this argument appends the given value to the array. enterprise-display-name=ipsum The name of the enterprise displayed to users. This field has a maximum length of 100 characters. logo sha256-hash=gubergren The base-64 encoded SHA-256 hash of the content hosted at url. If the content doesn't match this hash, Android Device Policy won't use the data. url=lorem The absolute URL to the data, which must use either the http or https scheme. Android Device Policy doesn't provide any credentials in the GET request, so the URL must be publicly accessible. Including a long, random component in the URL may be used to prevent attackers from discovering the URL. .. name=gubergren The name of the enterprise which is generated by the server during creation, in the form enterprises/{enterpriseId}. primary-color=26 A color in RGB format that indicates the predominant color to display in the device management app UI. The color components are stored as follows: (red << 16) | (green << 8) | blue, where the value of each component is between 0 and 255, inclusive. pubsub-topic=dolor The topic which Pub/Sub notifications are published to, in the form projects/{project}/topics/{topic}. This field is only required if Pub/Sub notifications are enabled. About Cursors The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p agreement-accepted=boolean Whether the enterprise admin has seen and agreed to the managed Google Play Agreement (https://www.android.com/enterprise/terms/). Do not set this field for any customer-managed enterprise (https://developers.google.com/android/management/create-enterprise#customer-managed_enterprises). Set this to field to true for all EMM-managed enterprises (https://developers.google.com/android/management/create-enterprise#emm-managed_enterprises). -p enterprise-token=string The enterprise token appended to the callback URL. Set this when creating a customer-managed enterprise (https://developers.google.com/android/management/create-enterprise#customer-managed_enterprises) and not when creating a deprecated EMM-managed enterprise (https://developers.google.com/android/management/create-enterprise#emm-managed_enterprises). -p project-id=string The ID of the Google Cloud Platform project which will own the enterprise. -p signup-url-name=string The name of the SignupUrl used to sign up for the enterprise. Set this when creating a customer-managed enterprise (https://developers.google.com/android/management/create-enterprise#customer-managed_enterprises) and not when creating a deprecated EMM-managed enterprise (https://developers.google.com/android/management/create-enterprise#emm-managed_enterprises). Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Create"},{"location":"enterprises_create/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises create ...","title":"Scopes"},{"location":"enterprises_create/#required-request-value","text":"The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: Enterprise: app-auto-approval-enabled: boolean contact-info: contact-email: string data-protection-officer-email: string data-protection-officer-name: string data-protection-officer-phone: string eu-representative-email: string eu-representative-name: string eu-representative-phone: string enabled-notification-types: [string] enterprise-display-name: string logo: sha256-hash: string url: string name: string primary-color: integer pubsub-topic: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . app-auto-approval-enabled=true Deprecated and unused. contact-info contact-email=voluptua. Email address for a point of contact, which will be used to send important announcements related to managed Google Play. data-protection-officer-email=at The email of the data protection officer. The email is validated but not verified. data-protection-officer-name=sanctus The name of the data protection officer. data-protection-officer-phone=sed The phone number of the data protection officer The phone number is validated but not verified. eu-representative-email=amet. The email of the EU representative. The email is validated but not verified. eu-representative-name=takimata The name of the EU representative. eu-representative-phone=amet. The phone number of the EU representative. The phone number is validated but not verified. .. enabled-notification-types=duo The types of Google Pub/Sub notifications enabled for the enterprise. Each invocation of this argument appends the given value to the array. enterprise-display-name=ipsum The name of the enterprise displayed to users. This field has a maximum length of 100 characters. logo sha256-hash=gubergren The base-64 encoded SHA-256 hash of the content hosted at url. If the content doesn't match this hash, Android Device Policy won't use the data. url=lorem The absolute URL to the data, which must use either the http or https scheme. Android Device Policy doesn't provide any credentials in the GET request, so the URL must be publicly accessible. Including a long, random component in the URL may be used to prevent attackers from discovering the URL. .. name=gubergren The name of the enterprise which is generated by the server during creation, in the form enterprises/{enterpriseId}. primary-color=26 A color in RGB format that indicates the predominant color to display in the device management app UI. The color components are stored as follows: (red << 16) | (green << 8) | blue, where the value of each component is between 0 and 255, inclusive. pubsub-topic=dolor The topic which Pub/Sub notifications are published to, in the form projects/{project}/topics/{topic}. This field is only required if Pub/Sub notifications are enabled.","title":"Required Request Value"},{"location":"enterprises_create/#about-cursors","text":"The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up.","title":"About Cursors"},{"location":"enterprises_create/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_create/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p agreement-accepted=boolean Whether the enterprise admin has seen and agreed to the managed Google Play Agreement (https://www.android.com/enterprise/terms/). Do not set this field for any customer-managed enterprise (https://developers.google.com/android/management/create-enterprise#customer-managed_enterprises). Set this to field to true for all EMM-managed enterprises (https://developers.google.com/android/management/create-enterprise#emm-managed_enterprises). -p enterprise-token=string The enterprise token appended to the callback URL. Set this when creating a customer-managed enterprise (https://developers.google.com/android/management/create-enterprise#customer-managed_enterprises) and not when creating a deprecated EMM-managed enterprise (https://developers.google.com/android/management/create-enterprise#emm-managed_enterprises). -p project-id=string The ID of the Google Cloud Platform project which will own the enterprise. -p signup-url-name=string The name of the SignupUrl used to sign up for the enterprise. Set this when creating a customer-managed enterprise (https://developers.google.com/android/management/create-enterprise#customer-managed_enterprises) and not when creating a deprecated EMM-managed enterprise (https://developers.google.com/android/management/create-enterprise#emm-managed_enterprises).","title":"Optional Method Properties"},{"location":"enterprises_create/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_delete/","text":"Permanently deletes an enterprise and all accounts and data associated with it. Warning: this will result in a cascaded deletion of all AM API devices associated with the deleted enterprise. Only available for EMM-managed enterprises. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises delete ... Required Scalar Argument <name> (string) The name of the enterprise in the form enterprises/{enterpriseId}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Delete"},{"location":"enterprises_delete/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises delete ...","title":"Scopes"},{"location":"enterprises_delete/#required-scalar-argument","text":"<name> (string) The name of the enterprise in the form enterprises/{enterpriseId}.","title":"Required Scalar Argument"},{"location":"enterprises_delete/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_delete/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_devices-delete/","text":"Deletes a device. This operation wipes the device. Deleted devices do not show up in enterprises.devices.list calls and a 404 is returned from enterprises.devices.get. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-delete ... Required Scalar Argument <name> (string) The name of the device in the form enterprises/{enterpriseId}/devices/{deviceId}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p wipe-data-flags=string Optional flags that control the device wiping behavior. -p wipe-reason-message=string Optional. A short message displayed to the user before wiping the work profile on personal devices. This has no effect on company owned devices. The maximum message length is 200 characters. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Devices Delete"},{"location":"enterprises_devices-delete/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-delete ...","title":"Scopes"},{"location":"enterprises_devices-delete/#required-scalar-argument","text":"<name> (string) The name of the device in the form enterprises/{enterpriseId}/devices/{deviceId}.","title":"Required Scalar Argument"},{"location":"enterprises_devices-delete/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_devices-delete/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p wipe-data-flags=string Optional flags that control the device wiping behavior. -p wipe-reason-message=string Optional. A short message displayed to the user before wiping the work profile on personal devices. This has no effect on company owned devices. The maximum message length is 200 characters.","title":"Optional Method Properties"},{"location":"enterprises_devices-delete/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_devices-get/","text":"Gets a device. Deleted devices will respond with a 404 error. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-get ... Required Scalar Argument <name> (string) The name of the device in the form enterprises/{enterpriseId}/devices/{deviceId}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Devices Get"},{"location":"enterprises_devices-get/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-get ...","title":"Scopes"},{"location":"enterprises_devices-get/#required-scalar-argument","text":"<name> (string) The name of the device in the form enterprises/{enterpriseId}/devices/{deviceId}.","title":"Required Scalar Argument"},{"location":"enterprises_devices-get/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_devices-get/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_devices-issue-command/","text":"Issues a command to a device. The Operation resource returned contains a Command in its metadata field. Use the get operation method to get the status of the command. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-issue-command ... Required Scalar Argument <name> (string) The name of the device in the form enterprises/{enterpriseId}/devices/{deviceId}. Required Request Value The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: Command: clear-apps-data-params: package-names: [string] create-time: string duration: string error-code: string new-password: string reset-password-flags: [string] start-lost-mode-params: lost-email-address: string lost-message: default-message: string localized-messages: { string: string } lost-organization: default-message: string localized-messages: { string: string } lost-phone-number: default-message: string localized-messages: { string: string } lost-street-address: default-message: string localized-messages: { string: string } start-lost-mode-status: status: string stop-lost-mode-status: status: string type: string user-name: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r .clear-apps-data-params package-names=ea The package names of the apps whose data will be cleared when the command is executed. Each invocation of this argument appends the given value to the array. .. create-time=ipsum The timestamp at which the command was created. The timestamp is automatically generated by the server. duration=invidunt The duration for which the command is valid. The command will expire if not executed by the device during this time. The default duration if unspecified is ten minutes. There is no maximum duration. error-code=amet If the command failed, an error code explaining the failure. This is not set when the command is cancelled by the caller. new-password=duo For commands of type RESET_PASSWORD, optionally specifies the new password. Note: The new password must be at least 6 characters long if it is numeric in case of Android 14 devices. Else the command will fail with INVALID_VALUE. reset-password-flags=ipsum For commands of type RESET_PASSWORD, optionally specifies flags. Each invocation of this argument appends the given value to the array. start-lost-mode-params lost-email-address=sed The email address displayed to the user when the device is in lost mode. lost-message default-message=ut The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=gubergren A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key ..lost-organization default-message=rebum. The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=est A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key ..lost-phone-number default-message=ipsum The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=ipsum A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key ..lost-street-address default-message=est The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=gubergren A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key ...start-lost-mode-status status=ea The status. See StartLostModeStatus. ..stop-lost-mode-status status=dolor The status. See StopLostModeStatus. .. type=lorem The type of the command. user-name=eos The resource name of the user that owns the device in the form enterprises/{enterpriseId}/users/{userId}. This is automatically generated by the server based on the device the command is sent to. About Cursors The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Devices Issue Command"},{"location":"enterprises_devices-issue-command/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-issue-command ...","title":"Scopes"},{"location":"enterprises_devices-issue-command/#required-scalar-argument","text":"<name> (string) The name of the device in the form enterprises/{enterpriseId}/devices/{deviceId}.","title":"Required Scalar Argument"},{"location":"enterprises_devices-issue-command/#required-request-value","text":"The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: Command: clear-apps-data-params: package-names: [string] create-time: string duration: string error-code: string new-password: string reset-password-flags: [string] start-lost-mode-params: lost-email-address: string lost-message: default-message: string localized-messages: { string: string } lost-organization: default-message: string localized-messages: { string: string } lost-phone-number: default-message: string localized-messages: { string: string } lost-street-address: default-message: string localized-messages: { string: string } start-lost-mode-status: status: string stop-lost-mode-status: status: string type: string user-name: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r .clear-apps-data-params package-names=ea The package names of the apps whose data will be cleared when the command is executed. Each invocation of this argument appends the given value to the array. .. create-time=ipsum The timestamp at which the command was created. The timestamp is automatically generated by the server. duration=invidunt The duration for which the command is valid. The command will expire if not executed by the device during this time. The default duration if unspecified is ten minutes. There is no maximum duration. error-code=amet If the command failed, an error code explaining the failure. This is not set when the command is cancelled by the caller. new-password=duo For commands of type RESET_PASSWORD, optionally specifies the new password. Note: The new password must be at least 6 characters long if it is numeric in case of Android 14 devices. Else the command will fail with INVALID_VALUE. reset-password-flags=ipsum For commands of type RESET_PASSWORD, optionally specifies flags. Each invocation of this argument appends the given value to the array. start-lost-mode-params lost-email-address=sed The email address displayed to the user when the device is in lost mode. lost-message default-message=ut The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=gubergren A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key ..lost-organization default-message=rebum. The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=est A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key ..lost-phone-number default-message=ipsum The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=ipsum A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key ..lost-street-address default-message=est The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=gubergren A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key ...start-lost-mode-status status=ea The status. See StartLostModeStatus. ..stop-lost-mode-status status=dolor The status. See StopLostModeStatus. .. type=lorem The type of the command. user-name=eos The resource name of the user that owns the device in the form enterprises/{enterpriseId}/users/{userId}. This is automatically generated by the server based on the device the command is sent to.","title":"Required Request Value"},{"location":"enterprises_devices-issue-command/#about-cursors","text":"The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up.","title":"About Cursors"},{"location":"enterprises_devices-issue-command/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_devices-issue-command/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_devices-list/","text":"Lists devices for a given enterprise. Deleted devices are not returned in the response. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-list ... Required Scalar Argument <parent> (string) The name of the enterprise in the form enterprises/{enterpriseId}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p page-size=integer The requested page size. The actual page size may be fixed to a min or max value. -p page-token=string A token identifying a page of results returned by the server. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Devices List"},{"location":"enterprises_devices-list/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-list ...","title":"Scopes"},{"location":"enterprises_devices-list/#required-scalar-argument","text":"<parent> (string) The name of the enterprise in the form enterprises/{enterpriseId}.","title":"Required Scalar Argument"},{"location":"enterprises_devices-list/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_devices-list/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p page-size=integer The requested page size. The actual page size may be fixed to a min or max value. -p page-token=string A token identifying a page of results returned by the server.","title":"Optional Method Properties"},{"location":"enterprises_devices-list/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_devices-operations-cancel/","text":"Starts asynchronous cancellation on a long-running operation. The server makes a best effort to cancel the operation, but success is not guaranteed. If the server doesn't support this method, it returns google.rpc.Code.UNIMPLEMENTED. Clients can use Operations.GetOperation or other methods to check whether the cancellation succeeded or whether the operation completed despite cancellation. On successful cancellation, the operation is not deleted; instead, it becomes an operation with an Operation.error value with a google.rpc.Status.code of 1, corresponding to Code.CANCELLED. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-operations-cancel ... Required Scalar Argument <name> (string) The name of the operation resource to be cancelled. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Devices Operations Cancel"},{"location":"enterprises_devices-operations-cancel/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-operations-cancel ...","title":"Scopes"},{"location":"enterprises_devices-operations-cancel/#required-scalar-argument","text":"<name> (string) The name of the operation resource to be cancelled.","title":"Required Scalar Argument"},{"location":"enterprises_devices-operations-cancel/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_devices-operations-cancel/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_devices-operations-get/","text":"Gets the latest state of a long-running operation. Clients can use this method to poll the operation result at intervals as recommended by the API service. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-operations-get ... Required Scalar Argument <name> (string) The name of the operation resource. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Devices Operations Get"},{"location":"enterprises_devices-operations-get/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-operations-get ...","title":"Scopes"},{"location":"enterprises_devices-operations-get/#required-scalar-argument","text":"<name> (string) The name of the operation resource.","title":"Required Scalar Argument"},{"location":"enterprises_devices-operations-get/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_devices-operations-get/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_devices-operations-list/","text":"Lists operations that match the specified filter in the request. If the server doesn't support this method, it returns UNIMPLEMENTED. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-operations-list ... Required Scalar Argument <name> (string) The name of the operation's parent resource. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p filter=string The standard list filter. -p page-size=integer The standard list page size. -p page-token=string The standard list page token. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Devices Operations List"},{"location":"enterprises_devices-operations-list/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-operations-list ...","title":"Scopes"},{"location":"enterprises_devices-operations-list/#required-scalar-argument","text":"<name> (string) The name of the operation's parent resource.","title":"Required Scalar Argument"},{"location":"enterprises_devices-operations-list/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_devices-operations-list/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p filter=string The standard list filter. -p page-size=integer The standard list page size. -p page-token=string The standard list page token.","title":"Optional Method Properties"},{"location":"enterprises_devices-operations-list/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_devices-patch/","text":"Updates a device. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-patch ... Required Scalar Argument <name> (string) The name of the device in the form enterprises/{enterpriseId}/devices/{deviceId}. Required Request Value The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: Device: api-level: integer applied-policy-name: string applied-policy-version: string applied-state: string common-criteria-mode-info: common-criteria-mode-status: string device-settings: adb-enabled: boolean development-settings-enabled: boolean encryption-status: string is-device-secure: boolean is-encrypted: boolean unknown-sources-enabled: boolean verify-apps-enabled: boolean disabled-reason: default-message: string localized-messages: { string: string } dpc-migration-info: additional-data: string previous-dpc: string enrollment-time: string enrollment-token-data: string enrollment-token-name: string hardware-info: battery-shutdown-temperatures: [number] battery-throttling-temperatures: [number] brand: string cpu-shutdown-temperatures: [number] cpu-throttling-temperatures: [number] device-baseband-version: string enterprise-specific-id: string gpu-shutdown-temperatures: [number] gpu-throttling-temperatures: [number] hardware: string manufacturer: string model: string serial-number: string skin-shutdown-temperatures: [number] skin-throttling-temperatures: [number] last-policy-compliance-report-time: string last-policy-sync-time: string last-status-report-time: string management-mode: string memory-info: total-internal-storage: string total-ram: string name: string network-info: imei: string meid: string network-operator-name: string wifi-mac-address: string ownership: string policy-compliant: boolean policy-name: string previous-device-names: [string] security-posture: device-posture: string software-info: android-build-number: string android-build-time: string android-device-policy-version-code: integer android-device-policy-version-name: string android-version: string bootloader-version: string device-build-signature: string device-kernel-version: string primary-language-code: string security-patch-level: string system-update-info: update-received-time: string update-status: string state: string system-properties: { string: string } user: account-identifier: string user-name: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . api-level=15 The API level of the Android platform version running on the device. applied-policy-name=sed The name of the policy currently applied to the device. applied-policy-version=duo The version of the policy currently applied to the device. applied-state=sed The state currently applied to the device. common-criteria-mode-info common-criteria-mode-status=no Whether Common Criteria Mode is enabled. ..device-settings adb-enabled=true Whether ADB (https://developer.android.com/studio/command-line/adb.html) is enabled on the device. development-settings-enabled=true Whether developer mode is enabled on the device. encryption-status=vero Encryption status from DevicePolicyManager. is-device-secure=false Whether the device is secured with PIN/password. is-encrypted=false Whether the storage encryption is enabled. unknown-sources-enabled=false Whether installing apps from unknown sources is enabled. verify-apps-enabled=true Whether Google Play Protect verification (https://support.google.com/accounts/answer/2812853) is enforced on the device. ..disabled-reason default-message=et The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=et A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key ..dpc-migration-info additional-data=sadipscing Output only. If this device was migrated from another DPC, the additionalData field of the migration token is populated here. previous-dpc=stet Output only. If this device was migrated from another DPC, this is its package name. Not populated otherwise. .. enrollment-time=dolor The time of device enrollment. enrollment-token-data=duo If the device was enrolled with an enrollment token with additional data provided, this field contains that data. enrollment-token-name=vero If the device was enrolled with an enrollment token, this field contains the name of the token. hardware-info battery-shutdown-temperatures=0.1970220513983837 Battery shutdown temperature thresholds in Celsius for each battery on the device. Each invocation of this argument appends the given value to the array. battery-throttling-temperatures=0.28492583480905564 Battery throttling temperature thresholds in Celsius for each battery on the device. Each invocation of this argument appends the given value to the array. brand=elitr Brand of the device. For example, Google. cpu-shutdown-temperatures=0.7491113388279885 CPU shutdown temperature thresholds in Celsius for each CPU on the device. Each invocation of this argument appends the given value to the array. cpu-throttling-temperatures=0.9996547162401588 CPU throttling temperature thresholds in Celsius for each CPU on the device. Each invocation of this argument appends the given value to the array. device-baseband-version=diam Baseband version. For example, MDM9625_104662.22.05.34p. enterprise-specific-id=no Output only. ID that uniquely identifies a personally-owned device in a particular organization. On the same physical device when enrolled with the same organization, this ID persists across setups and even factory resets. This ID is available on personally-owned devices with a work profile on devices running Android 12 and above. gpu-shutdown-temperatures=0.012465497817154336 GPU shutdown temperature thresholds in Celsius for each GPU on the device. Each invocation of this argument appends the given value to the array. gpu-throttling-temperatures=0.9368687392085286 GPU throttling temperature thresholds in Celsius for each GPU on the device. Each invocation of this argument appends the given value to the array. hardware=takimata Name of the hardware. For example, Angler. manufacturer=consetetur Manufacturer. For example, Motorola. model=voluptua. The model of the device. For example, Asus Nexus 7. serial-number=et The device serial number. skin-shutdown-temperatures=0.5496092442112607 Device skin shutdown temperature thresholds in Celsius. Each invocation of this argument appends the given value to the array. skin-throttling-temperatures=0.7759968264300798 Device skin throttling temperature thresholds in Celsius. Each invocation of this argument appends the given value to the array. .. last-policy-compliance-report-time=sed Deprecated. last-policy-sync-time=takimata The last time the device fetched its policy. last-status-report-time=dolores The last time the device sent a status report. management-mode=gubergren The type of management mode Android Device Policy takes on the device. This influences which policy settings are supported. memory-info total-internal-storage=et Total internal storage on device in bytes. total-ram=accusam Total RAM on device in bytes. .. name=voluptua. The name of the device in the form enterprises/{enterpriseId}/devices/{deviceId}. network-info imei=dolore IMEI number of the GSM device. For example, A1000031212. meid=dolore MEID number of the CDMA device. For example, A00000292788E1. network-operator-name=dolore Alphabetic name of current registered operator. For example, Vodafone. wifi-mac-address=voluptua. Wi-Fi MAC address of the device. For example, 7c:11:11:11:11:11. .. ownership=amet. Ownership of the managed device. policy-compliant=false Whether the device is compliant with its policy. policy-name=lorem The name of the policy applied to the device, in the form enterprises/{enterpriseId}/policies/{policyId}. If not specified, the policy_name for the device's user is applied. This field can be modified by a patch request. You can specify only the policyId when calling enterprises.devices.patch, as long as the policyId doesn\u2019t contain any slashes. The rest of the policy name is inferred. previous-device-names=invidunt If the same physical device has been enrolled multiple times, this field contains its previous device names. The serial number is used as the unique identifier to determine if the same physical device has enrolled previously. The names are in chronological order. Each invocation of this argument appends the given value to the array. security-posture device-posture=no Device's security posture value. ..software-info android-build-number=est Android build ID string meant for displaying to the user. For example, shamu-userdebug 6.0.1 MOB30I 2756745 dev-keys. android-build-time=at Build time. android-device-policy-version-code=58 The Android Device Policy app version code. android-device-policy-version-name=sit The Android Device Policy app version as displayed to the user. android-version=et The user-visible Android version string. For example, 6.0.1. bootloader-version=tempor The system bootloader version number, e.g. 0.6.7. device-build-signature=aliquyam SHA-256 hash of android.content.pm.Signature (https://developer.android.com/reference/android/content/pm/Signature.html) associated with the system package, which can be used to verify that the system build hasn't been modified. device-kernel-version=ipsum Kernel version, for example, 2.6.32.9-g103d848. primary-language-code=et An IETF BCP 47 language code for the primary locale on the device. security-patch-level=sanctus Security patch level, e.g. 2016-05-01. system-update-info update-received-time=lorem The time when the update was first available. A zero value indicates that this field is not set. This field is set only if an update is available (that is, updateStatus is neither UPDATE_STATUS_UNKNOWN nor UP_TO_DATE). update-status=est The status of an update: whether an update exists and what type it is. ... state=sed The state to be applied to the device. This field can be modified by a patch request. Note that when calling enterprises.devices.patch, ACTIVE and DISABLED are the only allowable values. To enter the device into a DELETED state, call enterprises.devices.delete. system-properties=key=diam Map of selected system properties name and value related to the device. This information is only available if systemPropertiesEnabled is true in the device's policy. the value will be associated with the given key user account-identifier=dolores A unique identifier you create for this user, such as user342 or asset#44418. This field must be set when the user is created and can't be updated. This field must not contain personally identifiable information (PII). This identifier must be 1024 characters or less; otherwise, the update policy request will fail. .. user-name=dolores The resource name of the user that owns this device in the form enterprises/{enterpriseId}/users/{userId}. About Cursors The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p update-mask=string The field mask indicating the fields to update. If not set, all modifiable fields will be modified. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Devices Patch"},{"location":"enterprises_devices-patch/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises devices-patch ...","title":"Scopes"},{"location":"enterprises_devices-patch/#required-scalar-argument","text":"<name> (string) The name of the device in the form enterprises/{enterpriseId}/devices/{deviceId}.","title":"Required Scalar Argument"},{"location":"enterprises_devices-patch/#required-request-value","text":"The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: Device: api-level: integer applied-policy-name: string applied-policy-version: string applied-state: string common-criteria-mode-info: common-criteria-mode-status: string device-settings: adb-enabled: boolean development-settings-enabled: boolean encryption-status: string is-device-secure: boolean is-encrypted: boolean unknown-sources-enabled: boolean verify-apps-enabled: boolean disabled-reason: default-message: string localized-messages: { string: string } dpc-migration-info: additional-data: string previous-dpc: string enrollment-time: string enrollment-token-data: string enrollment-token-name: string hardware-info: battery-shutdown-temperatures: [number] battery-throttling-temperatures: [number] brand: string cpu-shutdown-temperatures: [number] cpu-throttling-temperatures: [number] device-baseband-version: string enterprise-specific-id: string gpu-shutdown-temperatures: [number] gpu-throttling-temperatures: [number] hardware: string manufacturer: string model: string serial-number: string skin-shutdown-temperatures: [number] skin-throttling-temperatures: [number] last-policy-compliance-report-time: string last-policy-sync-time: string last-status-report-time: string management-mode: string memory-info: total-internal-storage: string total-ram: string name: string network-info: imei: string meid: string network-operator-name: string wifi-mac-address: string ownership: string policy-compliant: boolean policy-name: string previous-device-names: [string] security-posture: device-posture: string software-info: android-build-number: string android-build-time: string android-device-policy-version-code: integer android-device-policy-version-name: string android-version: string bootloader-version: string device-build-signature: string device-kernel-version: string primary-language-code: string security-patch-level: string system-update-info: update-received-time: string update-status: string state: string system-properties: { string: string } user: account-identifier: string user-name: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . api-level=15 The API level of the Android platform version running on the device. applied-policy-name=sed The name of the policy currently applied to the device. applied-policy-version=duo The version of the policy currently applied to the device. applied-state=sed The state currently applied to the device. common-criteria-mode-info common-criteria-mode-status=no Whether Common Criteria Mode is enabled. ..device-settings adb-enabled=true Whether ADB (https://developer.android.com/studio/command-line/adb.html) is enabled on the device. development-settings-enabled=true Whether developer mode is enabled on the device. encryption-status=vero Encryption status from DevicePolicyManager. is-device-secure=false Whether the device is secured with PIN/password. is-encrypted=false Whether the storage encryption is enabled. unknown-sources-enabled=false Whether installing apps from unknown sources is enabled. verify-apps-enabled=true Whether Google Play Protect verification (https://support.google.com/accounts/answer/2812853) is enforced on the device. ..disabled-reason default-message=et The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=et A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key ..dpc-migration-info additional-data=sadipscing Output only. If this device was migrated from another DPC, the additionalData field of the migration token is populated here. previous-dpc=stet Output only. If this device was migrated from another DPC, this is its package name. Not populated otherwise. .. enrollment-time=dolor The time of device enrollment. enrollment-token-data=duo If the device was enrolled with an enrollment token with additional data provided, this field contains that data. enrollment-token-name=vero If the device was enrolled with an enrollment token, this field contains the name of the token. hardware-info battery-shutdown-temperatures=0.1970220513983837 Battery shutdown temperature thresholds in Celsius for each battery on the device. Each invocation of this argument appends the given value to the array. battery-throttling-temperatures=0.28492583480905564 Battery throttling temperature thresholds in Celsius for each battery on the device. Each invocation of this argument appends the given value to the array. brand=elitr Brand of the device. For example, Google. cpu-shutdown-temperatures=0.7491113388279885 CPU shutdown temperature thresholds in Celsius for each CPU on the device. Each invocation of this argument appends the given value to the array. cpu-throttling-temperatures=0.9996547162401588 CPU throttling temperature thresholds in Celsius for each CPU on the device. Each invocation of this argument appends the given value to the array. device-baseband-version=diam Baseband version. For example, MDM9625_104662.22.05.34p. enterprise-specific-id=no Output only. ID that uniquely identifies a personally-owned device in a particular organization. On the same physical device when enrolled with the same organization, this ID persists across setups and even factory resets. This ID is available on personally-owned devices with a work profile on devices running Android 12 and above. gpu-shutdown-temperatures=0.012465497817154336 GPU shutdown temperature thresholds in Celsius for each GPU on the device. Each invocation of this argument appends the given value to the array. gpu-throttling-temperatures=0.9368687392085286 GPU throttling temperature thresholds in Celsius for each GPU on the device. Each invocation of this argument appends the given value to the array. hardware=takimata Name of the hardware. For example, Angler. manufacturer=consetetur Manufacturer. For example, Motorola. model=voluptua. The model of the device. For example, Asus Nexus 7. serial-number=et The device serial number. skin-shutdown-temperatures=0.5496092442112607 Device skin shutdown temperature thresholds in Celsius. Each invocation of this argument appends the given value to the array. skin-throttling-temperatures=0.7759968264300798 Device skin throttling temperature thresholds in Celsius. Each invocation of this argument appends the given value to the array. .. last-policy-compliance-report-time=sed Deprecated. last-policy-sync-time=takimata The last time the device fetched its policy. last-status-report-time=dolores The last time the device sent a status report. management-mode=gubergren The type of management mode Android Device Policy takes on the device. This influences which policy settings are supported. memory-info total-internal-storage=et Total internal storage on device in bytes. total-ram=accusam Total RAM on device in bytes. .. name=voluptua. The name of the device in the form enterprises/{enterpriseId}/devices/{deviceId}. network-info imei=dolore IMEI number of the GSM device. For example, A1000031212. meid=dolore MEID number of the CDMA device. For example, A00000292788E1. network-operator-name=dolore Alphabetic name of current registered operator. For example, Vodafone. wifi-mac-address=voluptua. Wi-Fi MAC address of the device. For example, 7c:11:11:11:11:11. .. ownership=amet. Ownership of the managed device. policy-compliant=false Whether the device is compliant with its policy. policy-name=lorem The name of the policy applied to the device, in the form enterprises/{enterpriseId}/policies/{policyId}. If not specified, the policy_name for the device's user is applied. This field can be modified by a patch request. You can specify only the policyId when calling enterprises.devices.patch, as long as the policyId doesn\u2019t contain any slashes. The rest of the policy name is inferred. previous-device-names=invidunt If the same physical device has been enrolled multiple times, this field contains its previous device names. The serial number is used as the unique identifier to determine if the same physical device has enrolled previously. The names are in chronological order. Each invocation of this argument appends the given value to the array. security-posture device-posture=no Device's security posture value. ..software-info android-build-number=est Android build ID string meant for displaying to the user. For example, shamu-userdebug 6.0.1 MOB30I 2756745 dev-keys. android-build-time=at Build time. android-device-policy-version-code=58 The Android Device Policy app version code. android-device-policy-version-name=sit The Android Device Policy app version as displayed to the user. android-version=et The user-visible Android version string. For example, 6.0.1. bootloader-version=tempor The system bootloader version number, e.g. 0.6.7. device-build-signature=aliquyam SHA-256 hash of android.content.pm.Signature (https://developer.android.com/reference/android/content/pm/Signature.html) associated with the system package, which can be used to verify that the system build hasn't been modified. device-kernel-version=ipsum Kernel version, for example, 2.6.32.9-g103d848. primary-language-code=et An IETF BCP 47 language code for the primary locale on the device. security-patch-level=sanctus Security patch level, e.g. 2016-05-01. system-update-info update-received-time=lorem The time when the update was first available. A zero value indicates that this field is not set. This field is set only if an update is available (that is, updateStatus is neither UPDATE_STATUS_UNKNOWN nor UP_TO_DATE). update-status=est The status of an update: whether an update exists and what type it is. ... state=sed The state to be applied to the device. This field can be modified by a patch request. Note that when calling enterprises.devices.patch, ACTIVE and DISABLED are the only allowable values. To enter the device into a DELETED state, call enterprises.devices.delete. system-properties=key=diam Map of selected system properties name and value related to the device. This information is only available if systemPropertiesEnabled is true in the device's policy. the value will be associated with the given key user account-identifier=dolores A unique identifier you create for this user, such as user342 or asset#44418. This field must be set when the user is created and can't be updated. This field must not contain personally identifiable information (PII). This identifier must be 1024 characters or less; otherwise, the update policy request will fail. .. user-name=dolores The resource name of the user that owns this device in the form enterprises/{enterpriseId}/users/{userId}.","title":"Required Request Value"},{"location":"enterprises_devices-patch/#about-cursors","text":"The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up.","title":"About Cursors"},{"location":"enterprises_devices-patch/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_devices-patch/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p update-mask=string The field mask indicating the fields to update. If not set, all modifiable fields will be modified.","title":"Optional Method Properties"},{"location":"enterprises_devices-patch/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_enrollment-tokens-create/","text":"Creates an enrollment token for a given enterprise. It's up to the caller's responsibility to manage the lifecycle of newly created tokens and deleting them when they're not intended to be used anymore. Once an enrollment token has been created, it's not possible to retrieve the token's content anymore using AM API. It is recommended for EMMs to securely store the token if it's intended to be reused. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises enrollment-tokens-create ... Required Scalar Argument <parent> (string) The name of the enterprise in the form enterprises/{enterpriseId}. Required Request Value The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: EnrollmentToken: additional-data: string allow-personal-usage: string duration: string expiration-timestamp: string name: string one-time-only: boolean policy-name: string qr-code: string user: account-identifier: string value: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . additional-data=et Optional, arbitrary data associated with the enrollment token. This could contain, for example, the ID of an org unit the device is assigned to after enrollment. After a device enrolls with the token, this data will be exposed in the enrollment_token_data field of the Device resource. The data must be 1024 characters or less; otherwise, the creation request will fail. allow-personal-usage=sed Controls whether personal usage is allowed on a device provisioned with this enrollment token.For company-owned devices: Enabling personal usage allows the user to set up a work profile on the device. Disabling personal usage requires the user provision the device as a fully managed device.For personally-owned devices: Enabling personal usage allows the user to set up a work profile on the device. Disabling personal usage will prevent the device from provisioning. Personal usage cannot be disabled on personally-owned device. duration=no The length of time the enrollment token is valid, ranging from 1 minute to Durations.MAX_VALUE (https://developers.google.com/protocol-buffers/docs/reference/java/com/google/protobuf/util/Durations.html#MAX_VALUE), approximately 10,000 years. If not specified, the default duration is 1 hour. Please note that if requested duration causes the resulting expiration_timestamp to exceed Timestamps.MAX_VALUE (https://developers.google.com/protocol-buffers/docs/reference/java/com/google/protobuf/util/Timestamps.html#MAX_VALUE), then expiration_timestamp is coerced to Timestamps.MAX_VALUE. expiration-timestamp=et The expiration time of the token. This is a read-only field generated by the server. name=elitr The name of the enrollment token, which is generated by the server during creation, in the form enterprises/{enterpriseId}/enrollmentTokens/{enrollmentTokenId}. one-time-only=false Whether the enrollment token is for one time use only. If the flag is set to true, only one device can use it for registration. policy-name=no The name of the policy initially applied to the enrolled device, in the form enterprises/{enterpriseId}/policies/{policyId}. If not specified, the policy_name for the device\u2019s user is applied. If user_name is also not specified, enterprises/{enterpriseId}/policies/default is applied by default. When updating this field, you can specify only the policyId as long as the policyId doesn\u2019t contain any slashes. The rest of the policy name will be inferred. qr-code=nonumy A JSON string whose UTF-8 representation can be used to generate a QR code to enroll a device with this enrollment token. To enroll a device using NFC, the NFC record must contain a serialized java.util.Properties representation of the properties in the JSON. user account-identifier=at A unique identifier you create for this user, such as user342 or asset#44418. This field must be set when the user is created and can't be updated. This field must not contain personally identifiable information (PII). This identifier must be 1024 characters or less; otherwise, the update policy request will fail. .. value=sadipscing The token value that's passed to the device and authorizes the device to enroll. This is a read-only field generated by the server. About Cursors The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Enrollment Tokens Create"},{"location":"enterprises_enrollment-tokens-create/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises enrollment-tokens-create ...","title":"Scopes"},{"location":"enterprises_enrollment-tokens-create/#required-scalar-argument","text":"<parent> (string) The name of the enterprise in the form enterprises/{enterpriseId}.","title":"Required Scalar Argument"},{"location":"enterprises_enrollment-tokens-create/#required-request-value","text":"The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: EnrollmentToken: additional-data: string allow-personal-usage: string duration: string expiration-timestamp: string name: string one-time-only: boolean policy-name: string qr-code: string user: account-identifier: string value: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . additional-data=et Optional, arbitrary data associated with the enrollment token. This could contain, for example, the ID of an org unit the device is assigned to after enrollment. After a device enrolls with the token, this data will be exposed in the enrollment_token_data field of the Device resource. The data must be 1024 characters or less; otherwise, the creation request will fail. allow-personal-usage=sed Controls whether personal usage is allowed on a device provisioned with this enrollment token.For company-owned devices: Enabling personal usage allows the user to set up a work profile on the device. Disabling personal usage requires the user provision the device as a fully managed device.For personally-owned devices: Enabling personal usage allows the user to set up a work profile on the device. Disabling personal usage will prevent the device from provisioning. Personal usage cannot be disabled on personally-owned device. duration=no The length of time the enrollment token is valid, ranging from 1 minute to Durations.MAX_VALUE (https://developers.google.com/protocol-buffers/docs/reference/java/com/google/protobuf/util/Durations.html#MAX_VALUE), approximately 10,000 years. If not specified, the default duration is 1 hour. Please note that if requested duration causes the resulting expiration_timestamp to exceed Timestamps.MAX_VALUE (https://developers.google.com/protocol-buffers/docs/reference/java/com/google/protobuf/util/Timestamps.html#MAX_VALUE), then expiration_timestamp is coerced to Timestamps.MAX_VALUE. expiration-timestamp=et The expiration time of the token. This is a read-only field generated by the server. name=elitr The name of the enrollment token, which is generated by the server during creation, in the form enterprises/{enterpriseId}/enrollmentTokens/{enrollmentTokenId}. one-time-only=false Whether the enrollment token is for one time use only. If the flag is set to true, only one device can use it for registration. policy-name=no The name of the policy initially applied to the enrolled device, in the form enterprises/{enterpriseId}/policies/{policyId}. If not specified, the policy_name for the device\u2019s user is applied. If user_name is also not specified, enterprises/{enterpriseId}/policies/default is applied by default. When updating this field, you can specify only the policyId as long as the policyId doesn\u2019t contain any slashes. The rest of the policy name will be inferred. qr-code=nonumy A JSON string whose UTF-8 representation can be used to generate a QR code to enroll a device with this enrollment token. To enroll a device using NFC, the NFC record must contain a serialized java.util.Properties representation of the properties in the JSON. user account-identifier=at A unique identifier you create for this user, such as user342 or asset#44418. This field must be set when the user is created and can't be updated. This field must not contain personally identifiable information (PII). This identifier must be 1024 characters or less; otherwise, the update policy request will fail. .. value=sadipscing The token value that's passed to the device and authorizes the device to enroll. This is a read-only field generated by the server.","title":"Required Request Value"},{"location":"enterprises_enrollment-tokens-create/#about-cursors","text":"The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up.","title":"About Cursors"},{"location":"enterprises_enrollment-tokens-create/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_enrollment-tokens-create/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_enrollment-tokens-delete/","text":"Deletes an enrollment token. This operation invalidates the token, preventing its future use. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises enrollment-tokens-delete ... Required Scalar Argument <name> (string) The name of the enrollment token in the form enterprises/{enterpriseId}/enrollmentTokens/{enrollmentTokenId}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Enrollment Tokens Delete"},{"location":"enterprises_enrollment-tokens-delete/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises enrollment-tokens-delete ...","title":"Scopes"},{"location":"enterprises_enrollment-tokens-delete/#required-scalar-argument","text":"<name> (string) The name of the enrollment token in the form enterprises/{enterpriseId}/enrollmentTokens/{enrollmentTokenId}.","title":"Required Scalar Argument"},{"location":"enterprises_enrollment-tokens-delete/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_enrollment-tokens-delete/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_enrollment-tokens-get/","text":"Gets an active, unexpired enrollment token. Only a partial view of EnrollmentToken is returned: all the fields but name and expiration_timestamp are empty. This method is meant to help manage active enrollment tokens lifecycle. For security reasons, it's recommended to delete active enrollment tokens as soon as they're not intended to be used anymore. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises enrollment-tokens-get ... Required Scalar Argument <name> (string) Required. The name of the enrollment token in the form enterprises/{enterpriseId}/enrollmentTokens/{enrollmentTokenId}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Enrollment Tokens Get"},{"location":"enterprises_enrollment-tokens-get/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises enrollment-tokens-get ...","title":"Scopes"},{"location":"enterprises_enrollment-tokens-get/#required-scalar-argument","text":"<name> (string) Required. The name of the enrollment token in the form enterprises/{enterpriseId}/enrollmentTokens/{enrollmentTokenId}.","title":"Required Scalar Argument"},{"location":"enterprises_enrollment-tokens-get/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_enrollment-tokens-get/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_enrollment-tokens-list/","text":"Lists active, unexpired enrollment tokens for a given enterprise. The list items contain only a partial view of EnrollmentToken: all the fields but name and expiration_timestamp are empty. This method is meant to help manage active enrollment tokens lifecycle. For security reasons, it's recommended to delete active enrollment tokens as soon as they're not intended to be used anymore. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises enrollment-tokens-list ... Required Scalar Argument <parent> (string) Required. The name of the enterprise in the form enterprises/{enterpriseId}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p page-size=integer The requested page size. The service may return fewer than this value. If unspecified, at most 10 items will be returned. The maximum value is 100; values above 100 will be coerced to 100. -p page-token=string A token identifying a page of results returned by the server. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Enrollment Tokens List"},{"location":"enterprises_enrollment-tokens-list/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises enrollment-tokens-list ...","title":"Scopes"},{"location":"enterprises_enrollment-tokens-list/#required-scalar-argument","text":"<parent> (string) Required. The name of the enterprise in the form enterprises/{enterpriseId}.","title":"Required Scalar Argument"},{"location":"enterprises_enrollment-tokens-list/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_enrollment-tokens-list/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p page-size=integer The requested page size. The service may return fewer than this value. If unspecified, at most 10 items will be returned. The maximum value is 100; values above 100 will be coerced to 100. -p page-token=string A token identifying a page of results returned by the server.","title":"Optional Method Properties"},{"location":"enterprises_enrollment-tokens-list/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_get/","text":"Gets an enterprise. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises get ... Required Scalar Argument <name> (string) The name of the enterprise in the form enterprises/{enterpriseId}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Get"},{"location":"enterprises_get/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises get ...","title":"Scopes"},{"location":"enterprises_get/#required-scalar-argument","text":"<name> (string) The name of the enterprise in the form enterprises/{enterpriseId}.","title":"Required Scalar Argument"},{"location":"enterprises_get/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_get/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_list/","text":"Lists EMM-managed enterprises. Only BASIC fields are returned. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises list ... Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p page-size=integer The requested page size. The actual page size may be fixed to a min or max value. -p page-token=string A token identifying a page of results returned by the server. -p project-id=string Required. The Cloud project ID of the EMM managing the enterprises. -p view=string Specifies which Enterprise fields to return. This method only supports BASIC. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"List"},{"location":"enterprises_list/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises list ...","title":"Scopes"},{"location":"enterprises_list/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_list/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p page-size=integer The requested page size. The actual page size may be fixed to a min or max value. -p page-token=string A token identifying a page of results returned by the server. -p project-id=string Required. The Cloud project ID of the EMM managing the enterprises. -p view=string Specifies which Enterprise fields to return. This method only supports BASIC.","title":"Optional Method Properties"},{"location":"enterprises_list/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_migration-tokens-create/","text":"Creates a migration token, to migrate an existing device from being managed by the EMM's Device Policy Controller (DPC) to being managed by the Android Management API. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises migration-tokens-create ... Required Scalar Argument <parent> (string) Required. The enterprise in which this migration token will be created. Format: enterprises/{enterprise} Required Request Value The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: MigrationToken: additional-data: string create-time: string device: string device-id: string expire-time: string management-mode: string name: string policy: string ttl: string user-id: string value: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . additional-data=aliquyam Immutable. Optional EMM-specified additional data. Once the device is migrated this will be populated in the migrationAdditionalData field of the Device resource. This must be at most 1024 characters. create-time=dolores Output only. Time when this migration token was created. device=sadipscing Output only. Once this migration token is used to migrate a device, the name of the resulting Device resource will be populated here, in the form enterprises/{enterprise}/devices/{device}. device-id=erat Required. Immutable. The id of the device, as in the Play EMM API. This corresponds to the deviceId parameter in Play EMM API's Devices.get (https://developers.google.com/android/work/play/emm-api/v1/devices/get#parameters) call. expire-time=aliquyam Immutable. The time when this migration token expires. This can be at most seven days from the time of creation. The migration token is deleted seven days after it expires. management-mode=amet Required. Immutable. The management mode of the device or profile being migrated. name=est Output only. The name of the migration token, which is generated by the server during creation, in the form enterprises/{enterprise}/migrationTokens/{migration_token}. policy=et Required. Immutable. The name of the policy initially applied to the enrolled device, in the form enterprises/{enterprise}/policies/{policy}. ttl=sea Input only. The time that this migration token is valid for. This is input-only, and for returning a migration token the server will populate the expireTime field. This can be at most seven days. The default is seven days. user-id=consetetur Required. Immutable. The user id of the Managed Google Play account on the device, as in the Play EMM API. This corresponds to the userId parameter in Play EMM API's Devices.get (https://developers.google.com/android/work/play/emm-api/v1/devices/get#parameters) call. value=consetetur Output only. The value of the migration token. About Cursors The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Migration Tokens Create"},{"location":"enterprises_migration-tokens-create/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises migration-tokens-create ...","title":"Scopes"},{"location":"enterprises_migration-tokens-create/#required-scalar-argument","text":"<parent> (string) Required. The enterprise in which this migration token will be created. Format: enterprises/{enterprise}","title":"Required Scalar Argument"},{"location":"enterprises_migration-tokens-create/#required-request-value","text":"The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: MigrationToken: additional-data: string create-time: string device: string device-id: string expire-time: string management-mode: string name: string policy: string ttl: string user-id: string value: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . additional-data=aliquyam Immutable. Optional EMM-specified additional data. Once the device is migrated this will be populated in the migrationAdditionalData field of the Device resource. This must be at most 1024 characters. create-time=dolores Output only. Time when this migration token was created. device=sadipscing Output only. Once this migration token is used to migrate a device, the name of the resulting Device resource will be populated here, in the form enterprises/{enterprise}/devices/{device}. device-id=erat Required. Immutable. The id of the device, as in the Play EMM API. This corresponds to the deviceId parameter in Play EMM API's Devices.get (https://developers.google.com/android/work/play/emm-api/v1/devices/get#parameters) call. expire-time=aliquyam Immutable. The time when this migration token expires. This can be at most seven days from the time of creation. The migration token is deleted seven days after it expires. management-mode=amet Required. Immutable. The management mode of the device or profile being migrated. name=est Output only. The name of the migration token, which is generated by the server during creation, in the form enterprises/{enterprise}/migrationTokens/{migration_token}. policy=et Required. Immutable. The name of the policy initially applied to the enrolled device, in the form enterprises/{enterprise}/policies/{policy}. ttl=sea Input only. The time that this migration token is valid for. This is input-only, and for returning a migration token the server will populate the expireTime field. This can be at most seven days. The default is seven days. user-id=consetetur Required. Immutable. The user id of the Managed Google Play account on the device, as in the Play EMM API. This corresponds to the userId parameter in Play EMM API's Devices.get (https://developers.google.com/android/work/play/emm-api/v1/devices/get#parameters) call. value=consetetur Output only. The value of the migration token.","title":"Required Request Value"},{"location":"enterprises_migration-tokens-create/#about-cursors","text":"The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up.","title":"About Cursors"},{"location":"enterprises_migration-tokens-create/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_migration-tokens-create/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_migration-tokens-get/","text":"Gets a migration token. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises migration-tokens-get ... Required Scalar Argument <name> (string) Required. The name of the migration token to retrieve. Format: enterprises/{enterprise}/migrationTokens/{migration_token} Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Migration Tokens Get"},{"location":"enterprises_migration-tokens-get/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises migration-tokens-get ...","title":"Scopes"},{"location":"enterprises_migration-tokens-get/#required-scalar-argument","text":"<name> (string) Required. The name of the migration token to retrieve. Format: enterprises/{enterprise}/migrationTokens/{migration_token}","title":"Required Scalar Argument"},{"location":"enterprises_migration-tokens-get/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_migration-tokens-get/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_migration-tokens-list/","text":"Lists migration tokens. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises migration-tokens-list ... Required Scalar Argument <parent> (string) Required. The enterprise which the migration tokens belong to. Format: enterprises/{enterprise} Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p page-size=integer The maximum number of migration tokens to return. Fewer migration tokens may be returned. If unspecified, at most 100 migration tokens will be returned. The maximum value is 100; values above 100 will be coerced to 100. -p page-token=string A page token, received from a previous ListMigrationTokens call. Provide this to retrieve the subsequent page.When paginating, all other parameters provided to ListMigrationTokens must match the call that provided the page token. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Migration Tokens List"},{"location":"enterprises_migration-tokens-list/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises migration-tokens-list ...","title":"Scopes"},{"location":"enterprises_migration-tokens-list/#required-scalar-argument","text":"<parent> (string) Required. The enterprise which the migration tokens belong to. Format: enterprises/{enterprise}","title":"Required Scalar Argument"},{"location":"enterprises_migration-tokens-list/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_migration-tokens-list/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p page-size=integer The maximum number of migration tokens to return. Fewer migration tokens may be returned. If unspecified, at most 100 migration tokens will be returned. The maximum value is 100; values above 100 will be coerced to 100. -p page-token=string A page token, received from a previous ListMigrationTokens call. Provide this to retrieve the subsequent page.When paginating, all other parameters provided to ListMigrationTokens must match the call that provided the page token.","title":"Optional Method Properties"},{"location":"enterprises_migration-tokens-list/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_patch/","text":"Updates an enterprise. See also: SigninDetail Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises patch ... Required Scalar Argument <name> (string) The name of the enterprise in the form enterprises/{enterpriseId}. Required Request Value The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: Enterprise: app-auto-approval-enabled: boolean contact-info: contact-email: string data-protection-officer-email: string data-protection-officer-name: string data-protection-officer-phone: string eu-representative-email: string eu-representative-name: string eu-representative-phone: string enabled-notification-types: [string] enterprise-display-name: string logo: sha256-hash: string url: string name: string primary-color: integer pubsub-topic: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . app-auto-approval-enabled=true Deprecated and unused. contact-info contact-email=est Email address for a point of contact, which will be used to send important announcements related to managed Google Play. data-protection-officer-email=aliquyam The email of the data protection officer. The email is validated but not verified. data-protection-officer-name=elitr The name of the data protection officer. data-protection-officer-phone=duo The phone number of the data protection officer The phone number is validated but not verified. eu-representative-email=diam The email of the EU representative. The email is validated but not verified. eu-representative-name=est The name of the EU representative. eu-representative-phone=sit The phone number of the EU representative. The phone number is validated but not verified. .. enabled-notification-types=sed The types of Google Pub/Sub notifications enabled for the enterprise. Each invocation of this argument appends the given value to the array. enterprise-display-name=eos The name of the enterprise displayed to users. This field has a maximum length of 100 characters. logo sha256-hash=lorem The base-64 encoded SHA-256 hash of the content hosted at url. If the content doesn't match this hash, Android Device Policy won't use the data. url=ea The absolute URL to the data, which must use either the http or https scheme. Android Device Policy doesn't provide any credentials in the GET request, so the URL must be publicly accessible. Including a long, random component in the URL may be used to prevent attackers from discovering the URL. .. name=stet The name of the enterprise which is generated by the server during creation, in the form enterprises/{enterpriseId}. primary-color=82 A color in RGB format that indicates the predominant color to display in the device management app UI. The color components are stored as follows: (red << 16) | (green << 8) | blue, where the value of each component is between 0 and 255, inclusive. pubsub-topic=eos The topic which Pub/Sub notifications are published to, in the form projects/{project}/topics/{topic}. This field is only required if Pub/Sub notifications are enabled. About Cursors The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p update-mask=string The field mask indicating the fields to update. If not set, all modifiable fields will be modified. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Patch"},{"location":"enterprises_patch/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises patch ...","title":"Scopes"},{"location":"enterprises_patch/#required-scalar-argument","text":"<name> (string) The name of the enterprise in the form enterprises/{enterpriseId}.","title":"Required Scalar Argument"},{"location":"enterprises_patch/#required-request-value","text":"The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: Enterprise: app-auto-approval-enabled: boolean contact-info: contact-email: string data-protection-officer-email: string data-protection-officer-name: string data-protection-officer-phone: string eu-representative-email: string eu-representative-name: string eu-representative-phone: string enabled-notification-types: [string] enterprise-display-name: string logo: sha256-hash: string url: string name: string primary-color: integer pubsub-topic: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . app-auto-approval-enabled=true Deprecated and unused. contact-info contact-email=est Email address for a point of contact, which will be used to send important announcements related to managed Google Play. data-protection-officer-email=aliquyam The email of the data protection officer. The email is validated but not verified. data-protection-officer-name=elitr The name of the data protection officer. data-protection-officer-phone=duo The phone number of the data protection officer The phone number is validated but not verified. eu-representative-email=diam The email of the EU representative. The email is validated but not verified. eu-representative-name=est The name of the EU representative. eu-representative-phone=sit The phone number of the EU representative. The phone number is validated but not verified. .. enabled-notification-types=sed The types of Google Pub/Sub notifications enabled for the enterprise. Each invocation of this argument appends the given value to the array. enterprise-display-name=eos The name of the enterprise displayed to users. This field has a maximum length of 100 characters. logo sha256-hash=lorem The base-64 encoded SHA-256 hash of the content hosted at url. If the content doesn't match this hash, Android Device Policy won't use the data. url=ea The absolute URL to the data, which must use either the http or https scheme. Android Device Policy doesn't provide any credentials in the GET request, so the URL must be publicly accessible. Including a long, random component in the URL may be used to prevent attackers from discovering the URL. .. name=stet The name of the enterprise which is generated by the server during creation, in the form enterprises/{enterpriseId}. primary-color=82 A color in RGB format that indicates the predominant color to display in the device management app UI. The color components are stored as follows: (red << 16) | (green << 8) | blue, where the value of each component is between 0 and 255, inclusive. pubsub-topic=eos The topic which Pub/Sub notifications are published to, in the form projects/{project}/topics/{topic}. This field is only required if Pub/Sub notifications are enabled.","title":"Required Request Value"},{"location":"enterprises_patch/#about-cursors","text":"The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up.","title":"About Cursors"},{"location":"enterprises_patch/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_patch/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p update-mask=string The field mask indicating the fields to update. If not set, all modifiable fields will be modified.","title":"Optional Method Properties"},{"location":"enterprises_patch/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_policies-delete/","text":"Deletes a policy. This operation is only permitted if no devices are currently referencing the policy. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises policies-delete ... Required Scalar Argument <name> (string) The name of the policy in the form enterprises/{enterpriseId}/policies/{policyId}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Policies Delete"},{"location":"enterprises_policies-delete/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises policies-delete ...","title":"Scopes"},{"location":"enterprises_policies-delete/#required-scalar-argument","text":"<name> (string) The name of the policy in the form enterprises/{enterpriseId}/policies/{policyId}.","title":"Required Scalar Argument"},{"location":"enterprises_policies-delete/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_policies-delete/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_policies-get/","text":"Gets a policy. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises policies-get ... Required Scalar Argument <name> (string) The name of the policy in the form enterprises/{enterpriseId}/policies/{policyId}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Policies Get"},{"location":"enterprises_policies-get/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises policies-get ...","title":"Scopes"},{"location":"enterprises_policies-get/#required-scalar-argument","text":"<name> (string) The name of the policy in the form enterprises/{enterpriseId}/policies/{policyId}.","title":"Required Scalar Argument"},{"location":"enterprises_policies-get/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_policies-get/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_policies-list/","text":"Lists policies for a given enterprise. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises policies-list ... Required Scalar Argument <parent> (string) The name of the enterprise in the form enterprises/{enterpriseId}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p page-size=integer The requested page size. The actual page size may be fixed to a min or max value. -p page-token=string A token identifying a page of results returned by the server. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Policies List"},{"location":"enterprises_policies-list/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises policies-list ...","title":"Scopes"},{"location":"enterprises_policies-list/#required-scalar-argument","text":"<parent> (string) The name of the enterprise in the form enterprises/{enterpriseId}.","title":"Required Scalar Argument"},{"location":"enterprises_policies-list/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_policies-list/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p page-size=integer The requested page size. The actual page size may be fixed to a min or max value. -p page-token=string A token identifying a page of results returned by the server.","title":"Optional Method Properties"},{"location":"enterprises_policies-list/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_policies-patch/","text":"Updates or creates a policy. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises policies-patch ... Required Scalar Argument <name> (string) The name of the policy in the form enterprises/{enterpriseId}/policies/{policyId}. Required Request Value The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: Policy: account-types-with-management-disabled: [string] add-user-disabled: boolean adjust-volume-disabled: boolean advanced-security-overrides: common-criteria-mode: string developer-settings: string google-play-protect-verify-apps: string mte-policy: string personal-apps-that-can-read-work-notifications: [string] untrusted-apps-policy: string always-on-vpn-package: lockdown-enabled: boolean package-name: string android-device-policy-tracks: [string] app-auto-update-policy: string auto-date-and-time-zone: string auto-time-required: boolean block-applications-enabled: boolean bluetooth-config-disabled: boolean bluetooth-contact-sharing-disabled: boolean bluetooth-disabled: boolean camera-access: string camera-disabled: boolean cell-broadcasts-config-disabled: boolean create-windows-disabled: boolean credential-provider-policy-default: string credentials-config-disabled: boolean cross-profile-policies: cross-profile-copy-paste: string cross-profile-data-sharing: string exemptions-to-show-work-contacts-in-personal-profile: package-names: [string] show-work-contacts-in-personal-profile: string work-profile-widgets-default: string data-roaming-disabled: boolean debugging-features-allowed: boolean default-permission-policy: string device-connectivity-management: configure-wifi: string tethering-settings: string usb-data-access: string wifi-direct-settings: string device-owner-lock-screen-info: default-message: string localized-messages: { string: string } device-radio-state: airplane-mode-state: string cellular-two-g-state: string minimum-wifi-security-level: string ultra-wideband-state: string wifi-state: string encryption-policy: string ensure-verify-apps-enabled: boolean factory-reset-disabled: boolean frp-admin-emails: [string] fun-disabled: boolean install-apps-disabled: boolean install-unknown-sources-allowed: boolean keyguard-disabled: boolean keyguard-disabled-features: [string] kiosk-custom-launcher-enabled: boolean kiosk-customization: device-settings: string power-button-actions: string status-bar: string system-error-warnings: string system-navigation: string location-mode: string long-support-message: default-message: string localized-messages: { string: string } maximum-time-to-lock: string microphone-access: string minimum-api-level: integer mobile-networks-config-disabled: boolean modify-accounts-disabled: boolean mount-physical-media-disabled: boolean name: string network-escape-hatch-enabled: boolean network-reset-disabled: boolean outgoing-beam-disabled: boolean outgoing-calls-disabled: boolean password-requirements: maximum-failed-passwords-for-wipe: integer password-expiration-timeout: string password-history-length: integer password-minimum-length: integer password-minimum-letters: integer password-minimum-lower-case: integer password-minimum-non-letter: integer password-minimum-numeric: integer password-minimum-symbols: integer password-minimum-upper-case: integer password-quality: string password-scope: string require-password-unlock: string unified-lock-settings: string permitted-accessibility-services: package-names: [string] permitted-input-methods: package-names: [string] personal-usage-policies: account-types-with-management-disabled: [string] camera-disabled: boolean max-days-with-work-off: integer personal-play-store-mode: string screen-capture-disabled: boolean play-store-mode: string preferential-network-service: string printing-policy: string private-key-selection-enabled: boolean recommended-global-proxy: excluded-hosts: [string] host: string pac-uri: string port: integer remove-user-disabled: boolean safe-boot-disabled: boolean screen-capture-disabled: boolean set-user-icon-disabled: boolean set-wallpaper-disabled: boolean share-location-disabled: boolean short-support-message: default-message: string localized-messages: { string: string } skip-first-use-hints-enabled: boolean sms-disabled: boolean status-bar-disabled: boolean status-reporting-settings: application-reporting-settings: include-removed-apps: boolean application-reports-enabled: boolean common-criteria-mode-enabled: boolean device-settings-enabled: boolean display-info-enabled: boolean hardware-status-enabled: boolean memory-info-enabled: boolean network-info-enabled: boolean power-management-events-enabled: boolean software-info-enabled: boolean system-properties-enabled: boolean stay-on-plugged-modes: [string] system-update: end-minutes: integer start-minutes: integer type: string tethering-config-disabled: boolean uninstall-apps-disabled: boolean unmute-microphone-disabled: boolean usage-log: enabled-log-types: [string] upload-on-cellular-allowed: [string] usb-file-transfer-disabled: boolean usb-mass-storage-enabled: boolean version: string vpn-config-disabled: boolean wifi-config-disabled: boolean wifi-configs-lockdown-enabled: boolean can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . account-types-with-management-disabled=et Account types that can't be managed by the user. Each invocation of this argument appends the given value to the array. add-user-disabled=false Whether adding new users and profiles is disabled. adjust-volume-disabled=false Whether adjusting the master volume is disabled. Also mutes the device. advanced-security-overrides common-criteria-mode=dolore Controls Common Criteria Mode\u2014security standards defined in the Common Criteria for Information Technology Security Evaluation (https://www.commoncriteriaportal.org/) (CC). Enabling Common Criteria Mode increases certain security components on a device, including AES-GCM encryption of Bluetooth Long Term Keys, and Wi-Fi configuration stores.Warning: Common Criteria Mode enforces a strict security model typically only required for IT products used in national security systems and other highly sensitive organizations. Standard device use may be affected. Only enabled if required. developer-settings=eirmod Controls access to developer settings: developer options and safe boot. Replaces safeBootDisabled (deprecated) and debuggingFeaturesAllowed (deprecated). google-play-protect-verify-apps=lorem Whether Google Play Protect verification (https://support.google.com/accounts/answer/2812853) is enforced. Replaces ensureVerifyAppsEnabled (deprecated). mte-policy=accusam Optional. Controls Memory Tagging Extension (MTE) (https://source.android.com/docs/security/test/memory-safety/arm-mte) on the device. The device needs to be rebooted to apply changes to the MTE policy. personal-apps-that-can-read-work-notifications=amet Personal apps that can read work profile notifications using a NotificationListenerService (https://developer.android.com/reference/android/service/notification/NotificationListenerService). By default, no personal apps (aside from system apps) can read work notifications. Each value in the list must be a package name. Each invocation of this argument appends the given value to the array. untrusted-apps-policy=erat The policy for untrusted apps (apps from unknown sources) enforced on the device. Replaces install_unknown_sources_allowed (deprecated). ..always-on-vpn-package lockdown-enabled=true Disallows networking when the VPN is not connected. package-name=erat The package name of the VPN app. .. android-device-policy-tracks=accusam This setting is not supported. Any value is ignored. Each invocation of this argument appends the given value to the array. app-auto-update-policy=sea Recommended alternative: autoUpdateMode which is set per app, provides greater flexibility around update frequency.When autoUpdateMode is set to AUTO_UPDATE_POSTPONED or AUTO_UPDATE_HIGH_PRIORITY, this field has no effect.The app auto update policy, which controls when automatic app updates can be applied. auto-date-and-time-zone=takimata Whether auto date, time, and time zone are enabled on a company-owned device. If this is set, then autoTimeRequired is ignored. auto-time-required=true Whether auto time is required, which prevents the user from manually setting the date and time. If autoDateAndTimeZone is set, this field is ignored. block-applications-enabled=false Whether applications other than the ones configured in applications are blocked from being installed. When set, applications that were installed under a previous policy but no longer appear in the policy are automatically uninstalled. bluetooth-config-disabled=true Whether configuring bluetooth is disabled. bluetooth-contact-sharing-disabled=false Whether bluetooth contact sharing is disabled. bluetooth-disabled=true Whether bluetooth is disabled. Prefer this setting over bluetooth_config_disabled because bluetooth_config_disabled can be bypassed by the user. camera-access=et Controls the use of the camera and whether the user has access to the camera access toggle. camera-disabled=true If camera_access is set to any value other than CAMERA_ACCESS_UNSPECIFIED, this has no effect. Otherwise this field controls whether cameras are disabled: If true, all cameras are disabled, otherwise they are available. For fully managed devices this field applies for all apps on the device. For work profiles, this field applies only to apps in the work profile, and the camera access of apps outside the work profile is unaffected. cell-broadcasts-config-disabled=false Whether configuring cell broadcast is disabled. create-windows-disabled=false Whether creating windows besides app windows is disabled. credential-provider-policy-default=aliquyam Controls which apps are allowed to act as credential providers on Android 14 and above. These apps store credentials, see this (https://developer.android.com/training/sign-in/passkeys) and this (https://developer.android.com/reference/androidx/credentials/CredentialManager) for details. See also credentialProviderPolicy. credentials-config-disabled=false Whether configuring user credentials is disabled. cross-profile-policies cross-profile-copy-paste=dolores Whether text copied from one profile (personal or work) can be pasted in the other profile. cross-profile-data-sharing=consetetur Whether data from one profile (personal or work) can be shared with apps in the other profile. Specifically controls simple data sharing via intents. Management of other cross-profile communication channels, such as contact search, copy/paste, or connected work & personal apps, are configured separately. exemptions-to-show-work-contacts-in-personal-profile package-names=gubergren A list of package names. Each invocation of this argument appends the given value to the array. .. show-work-contacts-in-personal-profile=dolor Whether personal apps can access contacts stored in the work profile.See also exemptions_to_show_work_contacts_in_personal_profile. work-profile-widgets-default=aliquyam Specifies the default behaviour for work profile widgets. If the policy does not specify work_profile_widgets for a specific application, it will behave according to the value specified here. .. data-roaming-disabled=true Whether roaming data services are disabled. debugging-features-allowed=true Whether the user is allowed to enable debugging features. default-permission-policy=lorem The default permission policy for runtime permission requests. device-connectivity-management configure-wifi=accusam Controls Wi-Fi configuring privileges. Based on the option set, user will have either full or limited or no control in configuring Wi-Fi networks. tethering-settings=gubergren Controls tethering settings. Based on the value set, the user is partially or fully disallowed from using different forms of tethering. usb-data-access=sadipscing Controls what files and/or data can be transferred via USB. Supported only on company-owned devices. wifi-direct-settings=at Controls configuring and using Wi-Fi direct settings. Supported on company-owned devices running Android 13 and above. ..device-owner-lock-screen-info default-message=sit The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=duo A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key ..device-radio-state airplane-mode-state=sit Controls whether airplane mode can be toggled by the user or not. cellular-two-g-state=magna Controls whether cellular 2G setting can be toggled by the user or not. minimum-wifi-security-level=et The minimum required security level of Wi-Fi networks that the device can connect to. ultra-wideband-state=rebum. Controls the state of the ultra wideband setting and whether the user can toggle it on or off. wifi-state=dolor Controls current state of Wi-Fi and if user can change its state. .. encryption-policy=lorem Whether encryption is enabled ensure-verify-apps-enabled=false Whether app verification is force-enabled. factory-reset-disabled=true Whether factory resetting from settings is disabled. frp-admin-emails=no Email addresses of device administrators for factory reset protection. When the device is factory reset, it will require one of these admins to log in with the Google account email and password to unlock the device. If no admins are specified, the device won't provide factory reset protection. Each invocation of this argument appends the given value to the array. fun-disabled=false Whether the user is allowed to have fun. Controls whether the Easter egg game in Settings is disabled. install-apps-disabled=true Whether user installation of apps is disabled. install-unknown-sources-allowed=false This field has no effect. keyguard-disabled=true If true, this disables the Lock Screen (https://source.android.com/docs/core/display/multi_display/lock-screen) for primary and/or secondary displays. keyguard-disabled-features=nonumy Disabled keyguard customizations, such as widgets. Each invocation of this argument appends the given value to the array. kiosk-custom-launcher-enabled=true Whether the kiosk custom launcher is enabled. This replaces the home screen with a launcher that locks down the device to the apps installed via the applications setting. Apps appear on a single page in alphabetical order. Use kioskCustomization to further configure the kiosk device behavior. kiosk-customization device-settings=tempor Specifies whether the Settings app is allowed in kiosk mode. power-button-actions=dolore Sets the behavior of a device in kiosk mode when a user presses and holds (long-presses) the Power button. status-bar=eos Specifies whether system info and notifications are disabled in kiosk mode. system-error-warnings=amet. Specifies whether system error dialogs for crashed or unresponsive apps are blocked in kiosk mode. When blocked, the system will force-stop the app as if the user chooses the \"close app\" option on the UI. system-navigation=dolore Specifies which navigation features are enabled (e.g. Home, Overview buttons) in kiosk mode. .. location-mode=amet The degree of location detection enabled. long-support-message default-message=ut The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=at A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key .. maximum-time-to-lock=sit Maximum time in milliseconds for user activity until the device locks. A value of 0 means there is no restriction. microphone-access=vero Controls the use of the microphone and whether the user has access to the microphone access toggle. This applies only on fully managed devices. minimum-api-level=81 The minimum allowed Android API level. mobile-networks-config-disabled=true Whether configuring mobile networks is disabled. modify-accounts-disabled=false Whether adding or removing accounts is disabled. mount-physical-media-disabled=false Whether the user mounting physical external media is disabled. name=kasd The name of the policy in the form enterprises/{enterpriseId}/policies/{policyId}. network-escape-hatch-enabled=false Whether the network escape hatch is enabled. If a network connection can't be made at boot time, the escape hatch prompts the user to temporarily connect to a network in order to refresh the device policy. After applying policy, the temporary network will be forgotten and the device will continue booting. This prevents being unable to connect to a network if there is no suitable network in the last policy and the device boots into an app in lock task mode, or the user is otherwise unable to reach device settings.Note: Setting wifiConfigDisabled to true will override this setting under specific circumstances. Please see wifiConfigDisabled for further details. Setting configureWifi to DISALLOW_CONFIGURING_WIFI will override this setting under specific circumstances. Please see DISALLOW_CONFIGURING_WIFI for further details. network-reset-disabled=true Whether resetting network settings is disabled. outgoing-beam-disabled=false Whether using NFC to beam data from apps is disabled. outgoing-calls-disabled=true Whether outgoing calls are disabled. password-requirements maximum-failed-passwords-for-wipe=68 Number of incorrect device-unlock passwords that can be entered before a device is wiped. A value of 0 means there is no restriction. password-expiration-timeout=takimata Password expiration timeout. password-history-length=35 The length of the password history. After setting this field, the user won't be able to enter a new password that is the same as any password in the history. A value of 0 means there is no restriction. password-minimum-length=74 The minimum allowed password length. A value of 0 means there is no restriction. Only enforced when password_quality is NUMERIC, NUMERIC_COMPLEX, ALPHABETIC, ALPHANUMERIC, or COMPLEX. password-minimum-letters=13 Minimum number of letters required in the password. Only enforced when password_quality is COMPLEX. password-minimum-lower-case=87 Minimum number of lower case letters required in the password. Only enforced when password_quality is COMPLEX. password-minimum-non-letter=86 Minimum number of non-letter characters (numerical digits or symbols) required in the password. Only enforced when password_quality is COMPLEX. password-minimum-numeric=19 Minimum number of numerical digits required in the password. Only enforced when password_quality is COMPLEX. password-minimum-symbols=64 Minimum number of symbols required in the password. Only enforced when password_quality is COMPLEX. password-minimum-upper-case=98 Minimum number of upper case letters required in the password. Only enforced when password_quality is COMPLEX. password-quality=vero The required password quality. password-scope=rebum. The scope that the password requirement applies to. require-password-unlock=dolores The length of time after a device or work profile is unlocked using a strong form of authentication (password, PIN, pattern) that it can be unlocked using any other authentication method (e.g. fingerprint, trust agents, face). After the specified time period elapses, only strong forms of authentication can be used to unlock the device or work profile. unified-lock-settings=consetetur Controls whether a unified lock is allowed for the device and the work profile, on devices running Android 9 and above with a work profile. This can be set only if password_scope is set to SCOPE_PROFILE, the policy will be rejected otherwise. If user has not set a separate work lock and this field is set to REQUIRE_SEPARATE_WORK_LOCK, a NonComplianceDetail is reported with nonComplianceReason set to USER_ACTION. ..permitted-accessibility-services package-names=dolores A list of package names. Each invocation of this argument appends the given value to the array. ..permitted-input-methods package-names=sed A list of package names. Each invocation of this argument appends the given value to the array. ..personal-usage-policies account-types-with-management-disabled=invidunt Account types that can't be managed by the user. Each invocation of this argument appends the given value to the array. camera-disabled=true If true, the camera is disabled on the personal profile. max-days-with-work-off=2 Controls how long the work profile can stay off. The minimum duration must be at least 3 days. Other details are as follows: - If the duration is set to 0, the feature is turned off. - If the duration is set to a value smaller than the minimum duration, the feature returns an error. Note: If you want to avoid personal profiles being suspended during long periods of off-time, you can temporarily set a large value for this parameter. personal-play-store-mode=aliquyam Used together with personalApplications to control how apps in the personal profile are allowed or blocked. screen-capture-disabled=false If true, screen capture is disabled for all users. .. play-store-mode=diam This mode controls which apps are available to the user in the Play Store and the behavior on the device when apps are removed from the policy. preferential-network-service=nonumy Controls whether preferential network service is enabled on the work profile. For example, an organization may have an agreement with a carrier that all of the work data from its employees' devices will be sent via a network service dedicated for enterprise use. An example of a supported preferential network service is the enterprise slice on 5G networks. This has no effect on fully managed devices. printing-policy=et Optional. Controls whether printing is allowed. This is supported on devices running Android 9 and above. . private-key-selection-enabled=true Allows showing UI on a device for a user to choose a private key alias if there are no matching rules in ChoosePrivateKeyRules. For devices below Android P, setting this may leave enterprise keys vulnerable. This value will have no effect if any application has CERT_SELECTION delegation scope. recommended-global-proxy excluded-hosts=sed For a direct proxy, the hosts for which the proxy is bypassed. The host names may contain wildcards such as *.example.com. Each invocation of this argument appends the given value to the array. host=est The host of the direct proxy. pac-uri=takimata The URI of the PAC script used to configure the proxy. port=2 The port of the direct proxy. .. remove-user-disabled=false Whether removing other users is disabled. safe-boot-disabled=false Whether rebooting the device into safe boot is disabled. screen-capture-disabled=false Whether screen capture is disabled. set-user-icon-disabled=false Whether changing the user icon is disabled. set-wallpaper-disabled=false Whether changing the wallpaper is disabled. share-location-disabled=false Whether location sharing is disabled. share_location_disabled is supported for both fully managed devices and personally owned work profiles. short-support-message default-message=no The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=justo A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key .. skip-first-use-hints-enabled=true Flag to skip hints on the first use. Enterprise admin can enable the system recommendation for apps to skip their user tutorial and other introductory hints on first start-up. sms-disabled=true Whether sending and receiving SMS messages is disabled. status-bar-disabled=true Whether the status bar is disabled. This disables notifications, quick settings, and other screen overlays that allow escape from full-screen mode. DEPRECATED. To disable the status bar on a kiosk device, use InstallType KIOSK or kioskCustomLauncherEnabled. status-reporting-settings.application-reporting-settings include-removed-apps=true Whether removed apps are included in application reports. .. application-reports-enabled=true Whether app reports are enabled. common-criteria-mode-enabled=false Whether Common Criteria Mode reporting is enabled. device-settings-enabled=true Whether device settings reporting is enabled. display-info-enabled=true Whether displays reporting is enabled. Report data is not available for personally owned devices with work profiles. hardware-status-enabled=false Whether hardware status reporting is enabled. Report data is not available for personally owned devices with work profiles. memory-info-enabled=false Whether memory event reporting is enabled. network-info-enabled=false Whether network info reporting is enabled. power-management-events-enabled=false Whether power management event reporting is enabled. Report data is not available for personally owned devices with work profiles. software-info-enabled=true Whether software info reporting is enabled. system-properties-enabled=false Whether system properties reporting is enabled. .. stay-on-plugged-modes=erat The battery plugged in modes for which the device stays on. When using this setting, it is recommended to clear maximum_time_to_lock so that the device doesn't lock itself while it stays on. Each invocation of this argument appends the given value to the array. system-update end-minutes=87 If the type is WINDOWED, the end of the maintenance window, measured as the number of minutes after midnight in device's local time. This value must be between 0 and 1439, inclusive. If this value is less than start_minutes, then the maintenance window spans midnight. If the maintenance window specified is smaller than 30 minutes, the actual window is extended to 30 minutes beyond the start time. start-minutes=25 If the type is WINDOWED, the start of the maintenance window, measured as the number of minutes after midnight in the device's local time. This value must be between 0 and 1439, inclusive. type=invidunt The type of system update to configure. .. tethering-config-disabled=false Whether configuring tethering and portable hotspots is disabled. If tetheringSettings is set to anything other than TETHERING_SETTINGS_UNSPECIFIED, this setting is ignored. uninstall-apps-disabled=false Whether user uninstallation of applications is disabled. This prevents apps from being uninstalled, even those removed using applications unmute-microphone-disabled=true If microphone_access is set to any value other than MICROPHONE_ACCESS_UNSPECIFIED, this has no effect. Otherwise this field controls whether microphones are disabled: If true, all microphones are disabled, otherwise they are available. This is available only on fully managed devices. usage-log enabled-log-types=voluptua. Specifies which log types are enabled. Note that users will receive on-device messaging when usage logging is enabled. Each invocation of this argument appends the given value to the array. upload-on-cellular-allowed=eos Specifies which of the enabled log types can be uploaded over mobile data. By default logs are queued for upload when the device connects to WiFi. Each invocation of this argument appends the given value to the array. .. usb-file-transfer-disabled=false Whether transferring files over USB is disabled. This is supported only on company-owned devices. usb-mass-storage-enabled=false Whether USB storage is enabled. Deprecated. version=consetetur The version of the policy. This is a read-only field. The version is incremented each time the policy is updated. vpn-config-disabled=false Whether configuring VPN is disabled. wifi-config-disabled=true Whether configuring Wi-Fi networks is disabled. Supported on fully managed devices and work profiles on company-owned devices. For fully managed devices, setting this to true removes all configured networks and retains only the networks configured using openNetworkConfiguration. For work profiles on company-owned devices, existing configured networks are not affected and the user is not allowed to add, remove, or modify Wi-Fi networks. If configureWifi is set to anything other than CONFIGURE_WIFI_UNSPECIFIED, this setting is ignored. Note: If a network connection can't be made at boot time and configuring Wi-Fi is disabled then network escape hatch will be shown in order to refresh the device policy (see networkEscapeHatchEnabled). wifi-configs-lockdown-enabled=true DEPRECATED - Use wifi_config_disabled. About Cursors The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p update-mask=string The field mask indicating the fields to update. If not set, all modifiable fields will be modified. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Policies Patch"},{"location":"enterprises_policies-patch/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises policies-patch ...","title":"Scopes"},{"location":"enterprises_policies-patch/#required-scalar-argument","text":"<name> (string) The name of the policy in the form enterprises/{enterpriseId}/policies/{policyId}.","title":"Required Scalar Argument"},{"location":"enterprises_policies-patch/#required-request-value","text":"The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: Policy: account-types-with-management-disabled: [string] add-user-disabled: boolean adjust-volume-disabled: boolean advanced-security-overrides: common-criteria-mode: string developer-settings: string google-play-protect-verify-apps: string mte-policy: string personal-apps-that-can-read-work-notifications: [string] untrusted-apps-policy: string always-on-vpn-package: lockdown-enabled: boolean package-name: string android-device-policy-tracks: [string] app-auto-update-policy: string auto-date-and-time-zone: string auto-time-required: boolean block-applications-enabled: boolean bluetooth-config-disabled: boolean bluetooth-contact-sharing-disabled: boolean bluetooth-disabled: boolean camera-access: string camera-disabled: boolean cell-broadcasts-config-disabled: boolean create-windows-disabled: boolean credential-provider-policy-default: string credentials-config-disabled: boolean cross-profile-policies: cross-profile-copy-paste: string cross-profile-data-sharing: string exemptions-to-show-work-contacts-in-personal-profile: package-names: [string] show-work-contacts-in-personal-profile: string work-profile-widgets-default: string data-roaming-disabled: boolean debugging-features-allowed: boolean default-permission-policy: string device-connectivity-management: configure-wifi: string tethering-settings: string usb-data-access: string wifi-direct-settings: string device-owner-lock-screen-info: default-message: string localized-messages: { string: string } device-radio-state: airplane-mode-state: string cellular-two-g-state: string minimum-wifi-security-level: string ultra-wideband-state: string wifi-state: string encryption-policy: string ensure-verify-apps-enabled: boolean factory-reset-disabled: boolean frp-admin-emails: [string] fun-disabled: boolean install-apps-disabled: boolean install-unknown-sources-allowed: boolean keyguard-disabled: boolean keyguard-disabled-features: [string] kiosk-custom-launcher-enabled: boolean kiosk-customization: device-settings: string power-button-actions: string status-bar: string system-error-warnings: string system-navigation: string location-mode: string long-support-message: default-message: string localized-messages: { string: string } maximum-time-to-lock: string microphone-access: string minimum-api-level: integer mobile-networks-config-disabled: boolean modify-accounts-disabled: boolean mount-physical-media-disabled: boolean name: string network-escape-hatch-enabled: boolean network-reset-disabled: boolean outgoing-beam-disabled: boolean outgoing-calls-disabled: boolean password-requirements: maximum-failed-passwords-for-wipe: integer password-expiration-timeout: string password-history-length: integer password-minimum-length: integer password-minimum-letters: integer password-minimum-lower-case: integer password-minimum-non-letter: integer password-minimum-numeric: integer password-minimum-symbols: integer password-minimum-upper-case: integer password-quality: string password-scope: string require-password-unlock: string unified-lock-settings: string permitted-accessibility-services: package-names: [string] permitted-input-methods: package-names: [string] personal-usage-policies: account-types-with-management-disabled: [string] camera-disabled: boolean max-days-with-work-off: integer personal-play-store-mode: string screen-capture-disabled: boolean play-store-mode: string preferential-network-service: string printing-policy: string private-key-selection-enabled: boolean recommended-global-proxy: excluded-hosts: [string] host: string pac-uri: string port: integer remove-user-disabled: boolean safe-boot-disabled: boolean screen-capture-disabled: boolean set-user-icon-disabled: boolean set-wallpaper-disabled: boolean share-location-disabled: boolean short-support-message: default-message: string localized-messages: { string: string } skip-first-use-hints-enabled: boolean sms-disabled: boolean status-bar-disabled: boolean status-reporting-settings: application-reporting-settings: include-removed-apps: boolean application-reports-enabled: boolean common-criteria-mode-enabled: boolean device-settings-enabled: boolean display-info-enabled: boolean hardware-status-enabled: boolean memory-info-enabled: boolean network-info-enabled: boolean power-management-events-enabled: boolean software-info-enabled: boolean system-properties-enabled: boolean stay-on-plugged-modes: [string] system-update: end-minutes: integer start-minutes: integer type: string tethering-config-disabled: boolean uninstall-apps-disabled: boolean unmute-microphone-disabled: boolean usage-log: enabled-log-types: [string] upload-on-cellular-allowed: [string] usb-file-transfer-disabled: boolean usb-mass-storage-enabled: boolean version: string vpn-config-disabled: boolean wifi-config-disabled: boolean wifi-configs-lockdown-enabled: boolean can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . account-types-with-management-disabled=et Account types that can't be managed by the user. Each invocation of this argument appends the given value to the array. add-user-disabled=false Whether adding new users and profiles is disabled. adjust-volume-disabled=false Whether adjusting the master volume is disabled. Also mutes the device. advanced-security-overrides common-criteria-mode=dolore Controls Common Criteria Mode\u2014security standards defined in the Common Criteria for Information Technology Security Evaluation (https://www.commoncriteriaportal.org/) (CC). Enabling Common Criteria Mode increases certain security components on a device, including AES-GCM encryption of Bluetooth Long Term Keys, and Wi-Fi configuration stores.Warning: Common Criteria Mode enforces a strict security model typically only required for IT products used in national security systems and other highly sensitive organizations. Standard device use may be affected. Only enabled if required. developer-settings=eirmod Controls access to developer settings: developer options and safe boot. Replaces safeBootDisabled (deprecated) and debuggingFeaturesAllowed (deprecated). google-play-protect-verify-apps=lorem Whether Google Play Protect verification (https://support.google.com/accounts/answer/2812853) is enforced. Replaces ensureVerifyAppsEnabled (deprecated). mte-policy=accusam Optional. Controls Memory Tagging Extension (MTE) (https://source.android.com/docs/security/test/memory-safety/arm-mte) on the device. The device needs to be rebooted to apply changes to the MTE policy. personal-apps-that-can-read-work-notifications=amet Personal apps that can read work profile notifications using a NotificationListenerService (https://developer.android.com/reference/android/service/notification/NotificationListenerService). By default, no personal apps (aside from system apps) can read work notifications. Each value in the list must be a package name. Each invocation of this argument appends the given value to the array. untrusted-apps-policy=erat The policy for untrusted apps (apps from unknown sources) enforced on the device. Replaces install_unknown_sources_allowed (deprecated). ..always-on-vpn-package lockdown-enabled=true Disallows networking when the VPN is not connected. package-name=erat The package name of the VPN app. .. android-device-policy-tracks=accusam This setting is not supported. Any value is ignored. Each invocation of this argument appends the given value to the array. app-auto-update-policy=sea Recommended alternative: autoUpdateMode which is set per app, provides greater flexibility around update frequency.When autoUpdateMode is set to AUTO_UPDATE_POSTPONED or AUTO_UPDATE_HIGH_PRIORITY, this field has no effect.The app auto update policy, which controls when automatic app updates can be applied. auto-date-and-time-zone=takimata Whether auto date, time, and time zone are enabled on a company-owned device. If this is set, then autoTimeRequired is ignored. auto-time-required=true Whether auto time is required, which prevents the user from manually setting the date and time. If autoDateAndTimeZone is set, this field is ignored. block-applications-enabled=false Whether applications other than the ones configured in applications are blocked from being installed. When set, applications that were installed under a previous policy but no longer appear in the policy are automatically uninstalled. bluetooth-config-disabled=true Whether configuring bluetooth is disabled. bluetooth-contact-sharing-disabled=false Whether bluetooth contact sharing is disabled. bluetooth-disabled=true Whether bluetooth is disabled. Prefer this setting over bluetooth_config_disabled because bluetooth_config_disabled can be bypassed by the user. camera-access=et Controls the use of the camera and whether the user has access to the camera access toggle. camera-disabled=true If camera_access is set to any value other than CAMERA_ACCESS_UNSPECIFIED, this has no effect. Otherwise this field controls whether cameras are disabled: If true, all cameras are disabled, otherwise they are available. For fully managed devices this field applies for all apps on the device. For work profiles, this field applies only to apps in the work profile, and the camera access of apps outside the work profile is unaffected. cell-broadcasts-config-disabled=false Whether configuring cell broadcast is disabled. create-windows-disabled=false Whether creating windows besides app windows is disabled. credential-provider-policy-default=aliquyam Controls which apps are allowed to act as credential providers on Android 14 and above. These apps store credentials, see this (https://developer.android.com/training/sign-in/passkeys) and this (https://developer.android.com/reference/androidx/credentials/CredentialManager) for details. See also credentialProviderPolicy. credentials-config-disabled=false Whether configuring user credentials is disabled. cross-profile-policies cross-profile-copy-paste=dolores Whether text copied from one profile (personal or work) can be pasted in the other profile. cross-profile-data-sharing=consetetur Whether data from one profile (personal or work) can be shared with apps in the other profile. Specifically controls simple data sharing via intents. Management of other cross-profile communication channels, such as contact search, copy/paste, or connected work & personal apps, are configured separately. exemptions-to-show-work-contacts-in-personal-profile package-names=gubergren A list of package names. Each invocation of this argument appends the given value to the array. .. show-work-contacts-in-personal-profile=dolor Whether personal apps can access contacts stored in the work profile.See also exemptions_to_show_work_contacts_in_personal_profile. work-profile-widgets-default=aliquyam Specifies the default behaviour for work profile widgets. If the policy does not specify work_profile_widgets for a specific application, it will behave according to the value specified here. .. data-roaming-disabled=true Whether roaming data services are disabled. debugging-features-allowed=true Whether the user is allowed to enable debugging features. default-permission-policy=lorem The default permission policy for runtime permission requests. device-connectivity-management configure-wifi=accusam Controls Wi-Fi configuring privileges. Based on the option set, user will have either full or limited or no control in configuring Wi-Fi networks. tethering-settings=gubergren Controls tethering settings. Based on the value set, the user is partially or fully disallowed from using different forms of tethering. usb-data-access=sadipscing Controls what files and/or data can be transferred via USB. Supported only on company-owned devices. wifi-direct-settings=at Controls configuring and using Wi-Fi direct settings. Supported on company-owned devices running Android 13 and above. ..device-owner-lock-screen-info default-message=sit The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=duo A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key ..device-radio-state airplane-mode-state=sit Controls whether airplane mode can be toggled by the user or not. cellular-two-g-state=magna Controls whether cellular 2G setting can be toggled by the user or not. minimum-wifi-security-level=et The minimum required security level of Wi-Fi networks that the device can connect to. ultra-wideband-state=rebum. Controls the state of the ultra wideband setting and whether the user can toggle it on or off. wifi-state=dolor Controls current state of Wi-Fi and if user can change its state. .. encryption-policy=lorem Whether encryption is enabled ensure-verify-apps-enabled=false Whether app verification is force-enabled. factory-reset-disabled=true Whether factory resetting from settings is disabled. frp-admin-emails=no Email addresses of device administrators for factory reset protection. When the device is factory reset, it will require one of these admins to log in with the Google account email and password to unlock the device. If no admins are specified, the device won't provide factory reset protection. Each invocation of this argument appends the given value to the array. fun-disabled=false Whether the user is allowed to have fun. Controls whether the Easter egg game in Settings is disabled. install-apps-disabled=true Whether user installation of apps is disabled. install-unknown-sources-allowed=false This field has no effect. keyguard-disabled=true If true, this disables the Lock Screen (https://source.android.com/docs/core/display/multi_display/lock-screen) for primary and/or secondary displays. keyguard-disabled-features=nonumy Disabled keyguard customizations, such as widgets. Each invocation of this argument appends the given value to the array. kiosk-custom-launcher-enabled=true Whether the kiosk custom launcher is enabled. This replaces the home screen with a launcher that locks down the device to the apps installed via the applications setting. Apps appear on a single page in alphabetical order. Use kioskCustomization to further configure the kiosk device behavior. kiosk-customization device-settings=tempor Specifies whether the Settings app is allowed in kiosk mode. power-button-actions=dolore Sets the behavior of a device in kiosk mode when a user presses and holds (long-presses) the Power button. status-bar=eos Specifies whether system info and notifications are disabled in kiosk mode. system-error-warnings=amet. Specifies whether system error dialogs for crashed or unresponsive apps are blocked in kiosk mode. When blocked, the system will force-stop the app as if the user chooses the \"close app\" option on the UI. system-navigation=dolore Specifies which navigation features are enabled (e.g. Home, Overview buttons) in kiosk mode. .. location-mode=amet The degree of location detection enabled. long-support-message default-message=ut The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=at A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key .. maximum-time-to-lock=sit Maximum time in milliseconds for user activity until the device locks. A value of 0 means there is no restriction. microphone-access=vero Controls the use of the microphone and whether the user has access to the microphone access toggle. This applies only on fully managed devices. minimum-api-level=81 The minimum allowed Android API level. mobile-networks-config-disabled=true Whether configuring mobile networks is disabled. modify-accounts-disabled=false Whether adding or removing accounts is disabled. mount-physical-media-disabled=false Whether the user mounting physical external media is disabled. name=kasd The name of the policy in the form enterprises/{enterpriseId}/policies/{policyId}. network-escape-hatch-enabled=false Whether the network escape hatch is enabled. If a network connection can't be made at boot time, the escape hatch prompts the user to temporarily connect to a network in order to refresh the device policy. After applying policy, the temporary network will be forgotten and the device will continue booting. This prevents being unable to connect to a network if there is no suitable network in the last policy and the device boots into an app in lock task mode, or the user is otherwise unable to reach device settings.Note: Setting wifiConfigDisabled to true will override this setting under specific circumstances. Please see wifiConfigDisabled for further details. Setting configureWifi to DISALLOW_CONFIGURING_WIFI will override this setting under specific circumstances. Please see DISALLOW_CONFIGURING_WIFI for further details. network-reset-disabled=true Whether resetting network settings is disabled. outgoing-beam-disabled=false Whether using NFC to beam data from apps is disabled. outgoing-calls-disabled=true Whether outgoing calls are disabled. password-requirements maximum-failed-passwords-for-wipe=68 Number of incorrect device-unlock passwords that can be entered before a device is wiped. A value of 0 means there is no restriction. password-expiration-timeout=takimata Password expiration timeout. password-history-length=35 The length of the password history. After setting this field, the user won't be able to enter a new password that is the same as any password in the history. A value of 0 means there is no restriction. password-minimum-length=74 The minimum allowed password length. A value of 0 means there is no restriction. Only enforced when password_quality is NUMERIC, NUMERIC_COMPLEX, ALPHABETIC, ALPHANUMERIC, or COMPLEX. password-minimum-letters=13 Minimum number of letters required in the password. Only enforced when password_quality is COMPLEX. password-minimum-lower-case=87 Minimum number of lower case letters required in the password. Only enforced when password_quality is COMPLEX. password-minimum-non-letter=86 Minimum number of non-letter characters (numerical digits or symbols) required in the password. Only enforced when password_quality is COMPLEX. password-minimum-numeric=19 Minimum number of numerical digits required in the password. Only enforced when password_quality is COMPLEX. password-minimum-symbols=64 Minimum number of symbols required in the password. Only enforced when password_quality is COMPLEX. password-minimum-upper-case=98 Minimum number of upper case letters required in the password. Only enforced when password_quality is COMPLEX. password-quality=vero The required password quality. password-scope=rebum. The scope that the password requirement applies to. require-password-unlock=dolores The length of time after a device or work profile is unlocked using a strong form of authentication (password, PIN, pattern) that it can be unlocked using any other authentication method (e.g. fingerprint, trust agents, face). After the specified time period elapses, only strong forms of authentication can be used to unlock the device or work profile. unified-lock-settings=consetetur Controls whether a unified lock is allowed for the device and the work profile, on devices running Android 9 and above with a work profile. This can be set only if password_scope is set to SCOPE_PROFILE, the policy will be rejected otherwise. If user has not set a separate work lock and this field is set to REQUIRE_SEPARATE_WORK_LOCK, a NonComplianceDetail is reported with nonComplianceReason set to USER_ACTION. ..permitted-accessibility-services package-names=dolores A list of package names. Each invocation of this argument appends the given value to the array. ..permitted-input-methods package-names=sed A list of package names. Each invocation of this argument appends the given value to the array. ..personal-usage-policies account-types-with-management-disabled=invidunt Account types that can't be managed by the user. Each invocation of this argument appends the given value to the array. camera-disabled=true If true, the camera is disabled on the personal profile. max-days-with-work-off=2 Controls how long the work profile can stay off. The minimum duration must be at least 3 days. Other details are as follows: - If the duration is set to 0, the feature is turned off. - If the duration is set to a value smaller than the minimum duration, the feature returns an error. Note: If you want to avoid personal profiles being suspended during long periods of off-time, you can temporarily set a large value for this parameter. personal-play-store-mode=aliquyam Used together with personalApplications to control how apps in the personal profile are allowed or blocked. screen-capture-disabled=false If true, screen capture is disabled for all users. .. play-store-mode=diam This mode controls which apps are available to the user in the Play Store and the behavior on the device when apps are removed from the policy. preferential-network-service=nonumy Controls whether preferential network service is enabled on the work profile. For example, an organization may have an agreement with a carrier that all of the work data from its employees' devices will be sent via a network service dedicated for enterprise use. An example of a supported preferential network service is the enterprise slice on 5G networks. This has no effect on fully managed devices. printing-policy=et Optional. Controls whether printing is allowed. This is supported on devices running Android 9 and above. . private-key-selection-enabled=true Allows showing UI on a device for a user to choose a private key alias if there are no matching rules in ChoosePrivateKeyRules. For devices below Android P, setting this may leave enterprise keys vulnerable. This value will have no effect if any application has CERT_SELECTION delegation scope. recommended-global-proxy excluded-hosts=sed For a direct proxy, the hosts for which the proxy is bypassed. The host names may contain wildcards such as *.example.com. Each invocation of this argument appends the given value to the array. host=est The host of the direct proxy. pac-uri=takimata The URI of the PAC script used to configure the proxy. port=2 The port of the direct proxy. .. remove-user-disabled=false Whether removing other users is disabled. safe-boot-disabled=false Whether rebooting the device into safe boot is disabled. screen-capture-disabled=false Whether screen capture is disabled. set-user-icon-disabled=false Whether changing the user icon is disabled. set-wallpaper-disabled=false Whether changing the wallpaper is disabled. share-location-disabled=false Whether location sharing is disabled. share_location_disabled is supported for both fully managed devices and personally owned work profiles. short-support-message default-message=no The default message displayed if no localized message is specified or the user's locale doesn't match with any of the localized messages. A default message must be provided if any localized messages are provided. localized-messages=key=justo A map containing pairs, where locale is a well-formed BCP 47 language (https://www.w3.org/International/articles/language-tags/) code, such as en-US, es-ES, or fr. the value will be associated with the given key .. skip-first-use-hints-enabled=true Flag to skip hints on the first use. Enterprise admin can enable the system recommendation for apps to skip their user tutorial and other introductory hints on first start-up. sms-disabled=true Whether sending and receiving SMS messages is disabled. status-bar-disabled=true Whether the status bar is disabled. This disables notifications, quick settings, and other screen overlays that allow escape from full-screen mode. DEPRECATED. To disable the status bar on a kiosk device, use InstallType KIOSK or kioskCustomLauncherEnabled. status-reporting-settings.application-reporting-settings include-removed-apps=true Whether removed apps are included in application reports. .. application-reports-enabled=true Whether app reports are enabled. common-criteria-mode-enabled=false Whether Common Criteria Mode reporting is enabled. device-settings-enabled=true Whether device settings reporting is enabled. display-info-enabled=true Whether displays reporting is enabled. Report data is not available for personally owned devices with work profiles. hardware-status-enabled=false Whether hardware status reporting is enabled. Report data is not available for personally owned devices with work profiles. memory-info-enabled=false Whether memory event reporting is enabled. network-info-enabled=false Whether network info reporting is enabled. power-management-events-enabled=false Whether power management event reporting is enabled. Report data is not available for personally owned devices with work profiles. software-info-enabled=true Whether software info reporting is enabled. system-properties-enabled=false Whether system properties reporting is enabled. .. stay-on-plugged-modes=erat The battery plugged in modes for which the device stays on. When using this setting, it is recommended to clear maximum_time_to_lock so that the device doesn't lock itself while it stays on. Each invocation of this argument appends the given value to the array. system-update end-minutes=87 If the type is WINDOWED, the end of the maintenance window, measured as the number of minutes after midnight in device's local time. This value must be between 0 and 1439, inclusive. If this value is less than start_minutes, then the maintenance window spans midnight. If the maintenance window specified is smaller than 30 minutes, the actual window is extended to 30 minutes beyond the start time. start-minutes=25 If the type is WINDOWED, the start of the maintenance window, measured as the number of minutes after midnight in the device's local time. This value must be between 0 and 1439, inclusive. type=invidunt The type of system update to configure. .. tethering-config-disabled=false Whether configuring tethering and portable hotspots is disabled. If tetheringSettings is set to anything other than TETHERING_SETTINGS_UNSPECIFIED, this setting is ignored. uninstall-apps-disabled=false Whether user uninstallation of applications is disabled. This prevents apps from being uninstalled, even those removed using applications unmute-microphone-disabled=true If microphone_access is set to any value other than MICROPHONE_ACCESS_UNSPECIFIED, this has no effect. Otherwise this field controls whether microphones are disabled: If true, all microphones are disabled, otherwise they are available. This is available only on fully managed devices. usage-log enabled-log-types=voluptua. Specifies which log types are enabled. Note that users will receive on-device messaging when usage logging is enabled. Each invocation of this argument appends the given value to the array. upload-on-cellular-allowed=eos Specifies which of the enabled log types can be uploaded over mobile data. By default logs are queued for upload when the device connects to WiFi. Each invocation of this argument appends the given value to the array. .. usb-file-transfer-disabled=false Whether transferring files over USB is disabled. This is supported only on company-owned devices. usb-mass-storage-enabled=false Whether USB storage is enabled. Deprecated. version=consetetur The version of the policy. This is a read-only field. The version is incremented each time the policy is updated. vpn-config-disabled=false Whether configuring VPN is disabled. wifi-config-disabled=true Whether configuring Wi-Fi networks is disabled. Supported on fully managed devices and work profiles on company-owned devices. For fully managed devices, setting this to true removes all configured networks and retains only the networks configured using openNetworkConfiguration. For work profiles on company-owned devices, existing configured networks are not affected and the user is not allowed to add, remove, or modify Wi-Fi networks. If configureWifi is set to anything other than CONFIGURE_WIFI_UNSPECIFIED, this setting is ignored. Note: If a network connection can't be made at boot time and configuring Wi-Fi is disabled then network escape hatch will be shown in order to refresh the device policy (see networkEscapeHatchEnabled). wifi-configs-lockdown-enabled=true DEPRECATED - Use wifi_config_disabled.","title":"Required Request Value"},{"location":"enterprises_policies-patch/#about-cursors","text":"The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up.","title":"About Cursors"},{"location":"enterprises_policies-patch/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_policies-patch/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p update-mask=string The field mask indicating the fields to update. If not set, all modifiable fields will be modified.","title":"Optional Method Properties"},{"location":"enterprises_policies-patch/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_web-apps-create/","text":"Creates a web app. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises web-apps-create ... Required Scalar Argument <parent> (string) The name of the enterprise in the form enterprises/{enterpriseId}. Required Request Value The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: WebApp: display-mode: string name: string start-url: string title: string version-code: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . display-mode=erat The display mode of the web app. name=diam The name of the web app, which is generated by the server during creation in the form enterprises/{enterpriseId}/webApps/{packageName}. start-url=nonumy The start URL, i.e. the URL that should load when the user opens the application. title=lorem The title of the web app as displayed to the user (e.g., amongst a list of other applications, or as a label for an icon). version-code=at The current version of the app.Note that the version can automatically increase during the lifetime of the web app, while Google does internal housekeeping to keep the web app up-to-date. About Cursors The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Web Apps Create"},{"location":"enterprises_web-apps-create/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises web-apps-create ...","title":"Scopes"},{"location":"enterprises_web-apps-create/#required-scalar-argument","text":"<parent> (string) The name of the enterprise in the form enterprises/{enterpriseId}.","title":"Required Scalar Argument"},{"location":"enterprises_web-apps-create/#required-request-value","text":"The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: WebApp: display-mode: string name: string start-url: string title: string version-code: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . display-mode=erat The display mode of the web app. name=diam The name of the web app, which is generated by the server during creation in the form enterprises/{enterpriseId}/webApps/{packageName}. start-url=nonumy The start URL, i.e. the URL that should load when the user opens the application. title=lorem The title of the web app as displayed to the user (e.g., amongst a list of other applications, or as a label for an icon). version-code=at The current version of the app.Note that the version can automatically increase during the lifetime of the web app, while Google does internal housekeeping to keep the web app up-to-date.","title":"Required Request Value"},{"location":"enterprises_web-apps-create/#about-cursors","text":"The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up.","title":"About Cursors"},{"location":"enterprises_web-apps-create/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_web-apps-create/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_web-apps-delete/","text":"Deletes a web app. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises web-apps-delete ... Required Scalar Argument <name> (string) The name of the web app in the form enterprises/{enterpriseId}/webApps/{packageName}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Web Apps Delete"},{"location":"enterprises_web-apps-delete/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises web-apps-delete ...","title":"Scopes"},{"location":"enterprises_web-apps-delete/#required-scalar-argument","text":"<name> (string) The name of the web app in the form enterprises/{enterpriseId}/webApps/{packageName}.","title":"Required Scalar Argument"},{"location":"enterprises_web-apps-delete/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_web-apps-delete/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_web-apps-get/","text":"Gets a web app. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises web-apps-get ... Required Scalar Argument <name> (string) The name of the web app in the form enterprises/{enterpriseId}/webApp/{packageName}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Web Apps Get"},{"location":"enterprises_web-apps-get/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises web-apps-get ...","title":"Scopes"},{"location":"enterprises_web-apps-get/#required-scalar-argument","text":"<name> (string) The name of the web app in the form enterprises/{enterpriseId}/webApp/{packageName}.","title":"Required Scalar Argument"},{"location":"enterprises_web-apps-get/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_web-apps-get/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_web-apps-list/","text":"Lists web apps for a given enterprise. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises web-apps-list ... Required Scalar Argument <parent> (string) The name of the enterprise in the form enterprises/{enterpriseId}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p page-size=integer The requested page size. This is a hint and the actual page size in the response may be different. -p page-token=string A token identifying a page of results returned by the server. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Web Apps List"},{"location":"enterprises_web-apps-list/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises web-apps-list ...","title":"Scopes"},{"location":"enterprises_web-apps-list/#required-scalar-argument","text":"<parent> (string) The name of the enterprise in the form enterprises/{enterpriseId}.","title":"Required Scalar Argument"},{"location":"enterprises_web-apps-list/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_web-apps-list/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p page-size=integer The requested page size. This is a hint and the actual page size in the response may be different. -p page-token=string A token identifying a page of results returned by the server.","title":"Optional Method Properties"},{"location":"enterprises_web-apps-list/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_web-apps-patch/","text":"Updates a web app. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises web-apps-patch ... Required Scalar Argument <name> (string) The name of the web app in the form enterprises/{enterpriseId}/webApps/{packageName}. Required Request Value The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: WebApp: display-mode: string name: string start-url: string title: string version-code: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . display-mode=diam The display mode of the web app. name=diam The name of the web app, which is generated by the server during creation in the form enterprises/{enterpriseId}/webApps/{packageName}. start-url=sed The start URL, i.e. the URL that should load when the user opens the application. title=et The title of the web app as displayed to the user (e.g., amongst a list of other applications, or as a label for an icon). version-code=ea The current version of the app.Note that the version can automatically increase during the lifetime of the web app, while Google does internal housekeeping to keep the web app up-to-date. About Cursors The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p update-mask=string The field mask indicating the fields to update. If not set, all modifiable fields will be modified. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Web Apps Patch"},{"location":"enterprises_web-apps-patch/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises web-apps-patch ...","title":"Scopes"},{"location":"enterprises_web-apps-patch/#required-scalar-argument","text":"<name> (string) The name of the web app in the form enterprises/{enterpriseId}/webApps/{packageName}.","title":"Required Scalar Argument"},{"location":"enterprises_web-apps-patch/#required-request-value","text":"The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: WebApp: display-mode: string name: string start-url: string title: string version-code: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . display-mode=diam The display mode of the web app. name=diam The name of the web app, which is generated by the server during creation in the form enterprises/{enterpriseId}/webApps/{packageName}. start-url=sed The start URL, i.e. the URL that should load when the user opens the application. title=et The title of the web app as displayed to the user (e.g., amongst a list of other applications, or as a label for an icon). version-code=ea The current version of the app.Note that the version can automatically increase during the lifetime of the web app, while Google does internal housekeeping to keep the web app up-to-date.","title":"Required Request Value"},{"location":"enterprises_web-apps-patch/#about-cursors","text":"The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up.","title":"About Cursors"},{"location":"enterprises_web-apps-patch/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_web-apps-patch/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p update-mask=string The field mask indicating the fields to update. If not set, all modifiable fields will be modified.","title":"Optional Method Properties"},{"location":"enterprises_web-apps-patch/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"enterprises_web-tokens-create/","text":"Creates a web token to access an embeddable managed Google Play web UI for a given enterprise. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises web-tokens-create ... Required Scalar Argument <parent> (string) The name of the enterprise in the form enterprises/{enterpriseId}. Required Request Value The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: WebToken: enabled-features: [string] name: string parent-frame-url: string permissions: [string] value: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . enabled-features=dolore The features to enable. Use this if you want to control exactly which feature(s) will be activated; leave empty to allow all features.Restrictions / things to note: - If no features are listed here, all features are enabled \u2014 this is the default behavior where you give access to all features to your admins. - This must not contain any FEATURE_UNSPECIFIED values. - Repeated values are ignored Each invocation of this argument appends the given value to the array. name=ipsum The name of the web token, which is generated by the server during creation in the form enterprises/{enterpriseId}/webTokens/{webTokenId}. parent-frame-url=ea The URL of the parent frame hosting the iframe with the embedded UI. To prevent XSS, the iframe may not be hosted at other URLs. The URL must use the https scheme. permissions=at Permissions available to an admin in the embedded UI. An admin must have all of these permissions in order to view the UI. This field is deprecated. Each invocation of this argument appends the given value to the array. value=sit The token value which is used in the hosting page to generate the iframe with the embedded UI. This is a read-only field generated by the server. About Cursors The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Web Tokens Create"},{"location":"enterprises_web-tokens-create/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> enterprises web-tokens-create ...","title":"Scopes"},{"location":"enterprises_web-tokens-create/#required-scalar-argument","text":"<parent> (string) The name of the enterprise in the form enterprises/{enterpriseId}.","title":"Required Scalar Argument"},{"location":"enterprises_web-tokens-create/#required-request-value","text":"The request value is a data-structure with various fields. Each field may be a simple scalar or another data-structure. In the latter case it is advised to set the field-cursor to the data-structure's field to specify values more concisely. For example, a structure like this: WebToken: enabled-features: [string] name: string parent-frame-url: string permissions: [string] value: string can be set completely with the following arguments which are assumed to be executed in the given order. Note how the cursor position is adjusted to the respective structures, allowing simple field names to be used most of the time. -r . enabled-features=dolore The features to enable. Use this if you want to control exactly which feature(s) will be activated; leave empty to allow all features.Restrictions / things to note: - If no features are listed here, all features are enabled \u2014 this is the default behavior where you give access to all features to your admins. - This must not contain any FEATURE_UNSPECIFIED values. - Repeated values are ignored Each invocation of this argument appends the given value to the array. name=ipsum The name of the web token, which is generated by the server during creation in the form enterprises/{enterpriseId}/webTokens/{webTokenId}. parent-frame-url=ea The URL of the parent frame hosting the iframe with the embedded UI. To prevent XSS, the iframe may not be hosted at other URLs. The URL must use the https scheme. permissions=at Permissions available to an admin in the embedded UI. An admin must have all of these permissions in order to view the UI. This field is deprecated. Each invocation of this argument appends the given value to the array. value=sit The token value which is used in the hosting page to generate the iframe with the embedded UI. This is a read-only field generated by the server.","title":"Required Request Value"},{"location":"enterprises_web-tokens-create/#about-cursors","text":"The cursor position is key to comfortably set complex nested structures. The following rules apply: The cursor position is always set relative to the current one, unless the field name starts with the . character. Fields can be nested such as in -r f.s.o . The cursor position is set relative to the top-level structure if it starts with . , e.g. -r .s.s You can also set nested fields without setting the cursor explicitly. For example, to set a value relative to the current cursor position, you would specify -r struct.sub_struct=bar . You can move the cursor one level up by using .. . Each additional . moves it up one additional level. E.g. ... would go three levels up.","title":"About Cursors"},{"location":"enterprises_web-tokens-create/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"enterprises_web-tokens-create/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"provisioning-info_get/","text":"Get the device provisioning information by the identifier provided in the sign-in url. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> provisioning-info get ... Required Scalar Argument <name> (string) Required. The identifier that Android Device Policy passes to the 3P sign-in page in the form of provisioningInfo/{provisioning_info}. Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Get"},{"location":"provisioning-info_get/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> provisioning-info get ...","title":"Scopes"},{"location":"provisioning-info_get/#required-scalar-argument","text":"<name> (string) Required. The identifier that Android Device Policy passes to the 3P sign-in page in the form of provisioningInfo/{provisioning_info}.","title":"Required Scalar Argument"},{"location":"provisioning-info_get/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"provisioning-info_get/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"},{"location":"signup-urls_create/","text":"Creates an enterprise signup URL. Scopes You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> signup-urls create ... Optional Output Flags The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output. Optional Method Properties You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p callback-url=string The callback URL that the admin will be redirected to after successfully creating an enterprise. Before redirecting there the system will add a query parameter to this URL named enterpriseToken which will contain an opaque token to be used for the create enterprise request. The URL will be parsed then reformatted in order to add the enterpriseToken parameter, so there may be some minor formatting changes. -p project-id=string The ID of the Google Cloud Platform project which will own the enterprise. Optional General Properties The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Create"},{"location":"signup-urls_create/#scopes","text":"You will need authorization for the https://www.googleapis.com/auth/androidmanagement scope to make a valid call. If unset, the scope for this method defaults to https://www.googleapis.com/auth/androidmanagement . You can set the scope for this method like this: androidmanagement1 --scope <scope> signup-urls create ...","title":"Scopes"},{"location":"signup-urls_create/#optional-output-flags","text":"The method's return value a JSON encoded structure, which will be written to standard output by default. -o out out specifies the destination to which to write the server's result to. It will be a JSON-encoded structure. The destination may be - to indicate standard output, or a filepath that is to contain the received bytes. If unset, it defaults to standard output.","title":"Optional Output Flags"},{"location":"signup-urls_create/#optional-method-properties","text":"You may set the following properties to further configure the call. Please note that -p is followed by one or more key-value-pairs, and is called like this -p k1=v1 k2=v2 even though the listing below repeats the -p for completeness. -p callback-url=string The callback URL that the admin will be redirected to after successfully creating an enterprise. Before redirecting there the system will add a query parameter to this URL named enterpriseToken which will contain an opaque token to be used for the create enterprise request. The URL will be parsed then reformatted in order to add the enterpriseToken parameter, so there may be some minor formatting changes. -p project-id=string The ID of the Google Cloud Platform project which will own the enterprise.","title":"Optional Method Properties"},{"location":"signup-urls_create/#optional-general-properties","text":"The following properties can configure any call, and are not specific to this method. -p $-xgafv=string V1 error format. -p access-token=string OAuth access token. -p alt=string Data format for response. -p callback=string JSONP -p fields=string Selector specifying which fields to include in a partial response. -p key=string API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. -p oauth-token=string OAuth 2.0 token for the current user. -p pretty-print=boolean Returns response with indentations and line breaks. -p quota-user=string Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. -p upload-type=string Legacy upload protocol for media (e.g. \"media\", \"multipart\"). -p upload-protocol=string Upload protocol for media (e.g. \"raw\", \"multipart\").","title":"Optional General Properties"}]}