Device Security Posture Checks

Device Security allows you to define trusted devices and incorporate those definitions into Security Policies for your Network or for individual Resources. As part of this, the Twingate desktop and client applications perform device posture checks to enforce basic trust definitions.

The settings that are supported by Device Security are specific to each platform.

Windows

Posture check

What it reports

Hard drive encryption

If the system disk and other disks are encrypted by BitLocker

Screen lock

If a password is required when returning from screen saver via WinAPI function LogonUser

Firewall

If the firewall (Windows or third party) is enabled, as confirmed by the Windows Security Center

Antivirus

If antivirus (Windows or third party) is installed, as confirmed by the Windows Security Center

macOS

Posture check

What it reports

Screen lock

If a password is required after sleep or screen saver begins

Biometric configuration

If either Touch ID or Face ID is configured

Linux

Posture check

What it reports

Firewall

If UFW, firewalld, or iptables firewalls are enabled (valid on Debian / Ubuntu, Centos / Fedora, and Arch Linux)

iOS

Posture check

What it reports

Screen lock

If a password is required on the device

Biometric configuration

If either Touch ID or Face ID is configured

Android

Posture check

What it reports

Hard drive encryption

If the hard drive is encrypted using File-Based Encryption

Screen lock

If a screen lock is configured, regardless of type

Biometric configuration

If a biometric login has been configured (either fingerprint or facial recognition)

Antivirus

If Play Protect is enabled as determined by the App Settings Activity


Did this page help you?