Hexnode MDM Features
Manage Company Devices
Can be Easy
Hexnode is listed as a leader and a major player in IDC MarketScape UEM Vendors Assessment Reports 2024.
Hexnode was recognized in the 2025 Gartner® Market Guide for Unified Endpoint Management Tools.
Forrester includes Hexnode as a Notable vendor in The Unified Endpoint Management Landscape, Q3 2023.
Flexible Enrollment
Android Zero-touch Enrollment
Set up Android devices over-the-air. Users can start using them immediately, no manual setup.
IMEI & Serial Number Enrollment
Upload IMEI or serial number lists. Apply policies to multiple Android devices at once.
Apple User Enrollment
Securely manage iOS BYOD devices via Managed Apple ID.
Google Workspace Enrollment
Sign up using Google Workspace, invite users for enrolling BYOD devices.
QR Code & URL Enrollment
Create policy-linked QR codes or URLs. Users enroll by scanning or clicking.
Samsung Knox Enrollment
Bulk-deploy Samsung devices with Knox Mobile Enrollment — fully automated setup.
Email-Based BYOD Enrollment
Send secure invites to BYOD users via email. They join via OTP verification.
Windows Autopilot & Azure AD Join
Auto-enroll Windows devices via Autopilot or Azure AD login.
Device Policy Categories
Full Device Management
Turn devices into secure, dedicated work tools. Lock Android devices to one or more business apps using kiosk mode. Block distractions, reduce data usage, and manage POS or digital signage screens with ease.
Work Profile Management (BYOD)
Securely manage Android, iOS, and macOS personal devices. Push business apps and data while keeping employees’ personal info private and untouched.
Dedicated Device Mode
Enable background control with the MDM agent. Restrict access to only approved business apps and files — perfect for frontline, retail, or field teams.
Security & Data Protection
Factory Reset Protection
Block unauthorized device reuse. Restrict Android factory reset setups to specific Google accounts only.
Data Loss Prevention (DLP)
Heading 2Protect sensitive business data. Block copy/paste, screen recording, and unauthorized sharing between work and personal apps.
VPN Configuration
Enable safe remote access to internal systems. Configure VPN profiles — native or third-party — directly from your MDM dashboard.
Lost Mode (iOS)
Lock down lost or stolen iPhones/iPads. Remotely mark them as lost to disable access instantly.
Gatekeeper & Firewall (macOS)
Stop users from overriding critical security settings. Enable macOS firewall to control app access to networks.
Website Whitelisting
Restrict internet access to only approved websites. Block all others by default. Enhance privacy by disabling cookies, cache, and browsing history.
Remote Data Wipe
Secure lost or decommissioned devices by remotely erasing all data. For BYOD, selectively wipe only corporate data, personal content stays untouched.
Passcode Enforcement
Strengthen security with custom password rules. Enforce password complexity, set expiry cycles, and block unauthorized device access.
BitLocker Encryption
Encrypt Windows 10 drives with Microsoft BitLocker. Enforce PIN-based access and enable secure recovery after device wipe.
FileVault Encryption (macOS)
Protect macOS devices with full-disk encryption. Leverage Apple’s built-in FileVault to keep corporate data secure.
Windows Information Protection (WIP)
Keep business data secure on employee-owned Windows BYOD devices. Prevent personal apps from accessing company files.
Advanced Browser Management
Customize browser settings across devices. Disable JavaScript, pop-ups, autofill, cookies, and form history. Perfect for kiosk mode and shared device setups.
Application Management
Distribute Company-Owned App
Easily upload and deploy your in-house business apps. Manage rollouts, updates, and removals remotely on Android, iOS, macOS, and Windows devices.
App Store
Heading 2Install, update, or remove iOS apps from the App Store on iPhones and iPads all from a centralized dashboard.
Apple Volume Purchase Program (VPP)
Buy iOS app licenses in bulk. Assign, revoke, or update licenses across devices directly from the MDM dashboard using your Apple VPP token.
Google Play Store
Deploy Android apps directly from the Play Store. Remotely install, update, or uninstall apps across all managed devices.
Windows Business Store
Connect your Windows Business Store to push apps to Windows 10 devices. Ideal for enterprises using Azure Active Directory.
Blacklist Specific App
Limit functionality inside approved apps. Block specific packages, modules, or screens within Android apps to ensure focus and compliance.
Remote Troubleshooting
Real-time Monitoring
Get live visibility into device status, health, and activity logs. Monitor CPU, battery, storage, and compliance metrics from a centralized dashboard.
Remote Cast
Mirror device screens in real-time for faster diagnostics. Support IT teams in visually identifying issues without physical access.
Instant support
Enable immediate helpdesk support. Address issues on-the-go via remote sessions, reducing downtime and enhancing productivity.
Remote Control
Take control of enrolled Android and Windows devices remotely. Perform actions, adjust settings, or guide users step-by-step.
Device Location Tracking
Enforced Location Settings
Ensure location services stay active on all enterprise devices for accurate and continuous tracking.
Geofencing
Create virtual boundaries (geofences) for Android and iOS devices. Get alerts when devices enter or exit designated zones.
Real-Time Location Tracking
Keep full visibility of all company-owned devices. Use GPS-based tracking for Android and iOS, and IP-based tracking for macOS.
Geofence-Based Policy Switching
Automate device behavior based on location. Dynamically apply different policies when a device moves across geofences — ideal for multi-role or field operations.