Permissible Usage
Stay organized with collections
Save and categorize content based on your preferences.
The use of Google's Android Management API is restricted solely to commercial
Enterprise Mobility Management (EMM) developers and Device Trust from Android
Enterprise (Device Trust) solution providers. All users of the Android
Management API must comply with this Permissible Usage policy. Device Trust
solution providers are Identity Providers (IDPs), Mobile Threat Defenders
(MTDs), Endpoint Detection & Response (EDR), Security Information and Event
Management (SIEM) and security operations tools. EMM developers and Device
Trust solution providers are organizations that build device management and/or
Device Trust solutions and offer their solutions to their end customers through
commercial sales to entities outside of their immediate company or parent
entity, and who support these end customers directly.
Device Trust signals provided by Android Management API are exclusively for
providing Device Trust/enterprise IT security to end customers on both
EMM-managed and non EMM-managed devices.
In order to access and use the Android Management API, EMM developers or Device
Trust solution providers must:
- Have a direct agreement with its end customers, respectively, for the purposes
of building device management and/or Device Trust solutions.
- Inform end customers and its users, as appropriate, about its access and use
of data from its use of the Android Management API.
The following management scenarios and technology uses are not allowed:
- Device financing solutions (e.g. solutions intended to control device usage
used in conjunction with hardware lease arrangements).
- Solutions developed exclusively for the purpose of device or user monitoring,
fingerprinting, or eavesdropping independent of enterprise management.
- Alteration of a commercially available Android Device to subsequently sell,
resell or lease such altered device.
- Push, preload or auto install applications and/or services on Android Devices
without the express and informed prior consent of relevant customers and their
end users.
- Solutions developed and used exclusively for first party in-house
applications.
- Usage of the Android Management API policies & commands on non EMM-managed
devices except for Device Trust solutions.
- Usage of the Device Trust signals with the legacy Device Admin functionality.
- Usage of the Device Trust signals in solutions using the accessibility APIs.
Google reserves the right to revoke access to the Android Management API or
limit access to certain features if an EMM developer or Device Trust solution
provider fails to comply with these usage requirements.
To inquire about potential usage of the Android Management API outside of the
stated guidelines above, you can complete and submit this form.
Quotas and Restrictions
Android Management API enforces the following quotas and restrictions:
- Default quota of 500 registered devices for each project.
- Default quota of 1000 queries per 100 seconds for each project. For example,
if you make 1000 requests in 1 second, you won't be able to make any more
requests for the next 99 seconds.
- Applying
factoryResetDisabled and frpAdminEmails settings to a
Policy will be restricted until the 500 registered device quota is
removed.
You can request a quota increase and/or the removal of restrictions using this
form.
Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2025-05-01 UTC.
[null,null,["Last updated 2025-05-01 UTC."],[[["\u003cp\u003eThe Android Management API is exclusively for commercial EMM developers and Zero Trust solution providers who support external customers.\u003c/p\u003e\n"],["\u003cp\u003eUsage is restricted and prohibits device financing, unauthorized monitoring, device alteration for resale, and unconsented app installations.\u003c/p\u003e\n"],["\u003cp\u003eZero Trust signals can be used to enhance security for both EMM-managed and non-EMM-managed devices within enterprise environments.\u003c/p\u003e\n"],["\u003cp\u003eAccess to the API requires a direct agreement between the provider and their end customers for device management or Zero Trust solutions.\u003c/p\u003e\n"],["\u003cp\u003eGoogle enforces quotas on device registrations and API request rates, with options to request increases.\u003c/p\u003e\n"]]],["The Android Management API is for commercial Enterprise Mobility Management (EMM) developers and Zero Trust solution providers, which includes IDPs, MTDs, EDR, SIEM, and security operations tools. Permitted users build device management or Zero Trust solutions for external customers. Prohibited actions include device financing, device monitoring/fingerprinting outside enterprise management, unauthorized device alteration, and unauthorized app installations. API usage requires direct customer agreements, limited to 500 devices per project, and 1000 queries per 100 seconds.\n"],null,["# Permissible Usage\n\nThe use of Google's Android Management API is restricted solely to commercial\nEnterprise Mobility Management (EMM) developers and Device Trust from Android\nEnterprise (Device Trust) solution providers. All users of the Android\nManagement API must comply with this Permissible Usage policy. Device Trust\nsolution providers are Identity Providers (IDPs), Mobile Threat Defenders\n(MTDs), Endpoint Detection \\& Response (EDR), Security Information and Event\nManagement (SIEM) and security operations tools. EMM developers and Device\nTrust solution providers are organizations that build device management and/or\nDevice Trust solutions and offer their solutions to their end customers through\ncommercial sales to entities outside of their immediate company or parent\nentity, and who support these end customers directly.\n\nDevice Trust signals provided by Android Management API are exclusively for\nproviding Device Trust/enterprise IT security to end customers on both\nEMM-managed and non EMM-managed devices.\n\nIn order to access and use the Android Management API, EMM developers or Device\nTrust solution providers must:\n\n- Have a direct agreement with its end customers, respectively, for the purposes of building device management and/or Device Trust solutions.\n- Inform end customers and its users, as appropriate, about its access and use of data from its use of the Android Management API.\n\nThe following management scenarios and technology uses are not allowed:\n\n- Device financing solutions (e.g. solutions intended to control device usage used in conjunction with hardware lease arrangements).\n- Solutions developed exclusively for the purpose of device or user monitoring, fingerprinting, or eavesdropping independent of enterprise management.\n- Alteration of a commercially available Android Device to subsequently sell, resell or lease such altered device.\n- Push, preload or auto install applications and/or services on Android Devices without the express and informed prior consent of relevant customers and their end users.\n- Solutions developed and used exclusively for first party in-house applications.\n- Usage of the Android Management API policies \\& commands on non EMM-managed devices except for Device Trust solutions.\n- Usage of the Device Trust signals with the legacy Device Admin functionality.\n- Usage of the Device Trust signals in solutions using the accessibility APIs.\n\nGoogle reserves the right to revoke access to the Android Management API or\nlimit access to certain features if an EMM developer or Device Trust solution\nprovider fails to comply with these usage requirements.\n\nTo inquire about potential usage of the Android Management API outside of the\nstated guidelines above, you can complete and submit this [form](https://goo.gle/android-enterprise-response).\n\nQuotas and Restrictions\n-----------------------\n\nAndroid Management API enforces the following quotas and restrictions:\n\n- Default quota of 500 registered devices for each project.\n- Default quota of 1000 queries per 100 seconds for each project. For example, if you make 1000 requests in 1 second, you won't be able to make any more requests for the next 99 seconds.\n- Applying [`factoryResetDisabled`](https://developers.google.com/android/management/reference/rest/v1/enterprises.policies#Policy.FIELDS.factory_reset_disabled) and [`frpAdminEmails`](https://developers.google.com/android/management/reference/rest/v1/enterprises.policies#Policy.FIELDS.frp_admin_emails) settings to a [`Policy`](https://developers.google.com/android/management/reference/rest/v1/enterprises.policies) will be restricted until the 500 registered device quota is removed.\n\nYou can request a quota increase and/or the removal of restrictions using this\n[form](https://goo.gle/android-enterprise-response)."]]
