Android device management agents FAQ

The transition process depends on how the device is set up:

Personal device with a work profile

Your organization's management privilege is Profile owner

On the device, the user removes their work profile and then adds their work account again. They're prompted to set up Android Device Policy.

Note: If the device doesn't support Android Device Policy, the user is prompted to set up Google Apps Device Policy app instead.

Personal device without a work profile

Your organization's management privilege is Device admin

On the device, the user takes the following steps:

1. Open the Google Apps Device Policy app.
2. Tap Unregister. The work account is removed from the device.
3. Open the Settings app and tap Accounts.
4. Add the work account again and set up Android Device Policy. During enrollment, the user must set up a work profile because it's required for Android Device Policy.

   Note: If the device doesn't support Android Device Policy, the user is prompted to set up Google Apps Device Policy app instead.

Company-owned device or a personal device the users sets as work-only

Your organization's management privilege is Device owner

To trigger the switch, an admin must reset the device or, if allowed, the user. The user can then add the work account again and set up Android Device Policy. Note: If the device doesn't support Android Device Policy, the user is prompted to set up Google Apps Device Policy app instead.

To reset the device from the Admin console:

1. Sign in to your Google Admin console.

   Sign in using your administrator account (does not end in @gmail.com).

2. Go to Menu  DevicesOverview.
3. Click Mobile devices.
4. Point to the device and click MoreWipe Device.

If you allow users to reset their devices, the user can reset the device.

1. Sign in to your Google Admin console.

   Sign in using your administrator account (does not end in @gmail.com).

2. Go to Menu  DevicesOverview.
3. Click Mobile devices.
4. Click the row of the device that you want to view details for.
5. Click Device security.

   The device’s management is listed under User agent.

1. Sign in to your Google Admin console.

   Sign in using your administrator account (does not end in @gmail.com).

2. In the Admin console, go to Menu  DevicesMobile & endpointsDevices.
3. Click Add a filterselect OSenter Androidclick Apply.
4. Click Add a filterselect Management levelselect Advancedclick Apply.
5. To export the results, in the top-right corner, click Download device list.
6. In download box, select All columns and Google Sheetsclick Download.
7. To open your download, under Your Tasks, click Open in Google Sheets.
8. In Google Sheets, filter the data by User Agent.

The device user doesn't need to install anything, but they will be prompted to set up a work profile on personal devices. 

Android Device Policy is integrated directly into the operating system of the device, so it doesn't open as a separate app on the device. If needed, you can access the app in Google Play. On the device, tap Play Store and search for Android Device Policy.

The data that's removed from a device depends on your organization's management privilege:

No. Personal Android devices managed with advanced mobile management and set up as user-owned (user selects Use for work & personal during setup) must install a work profile to access work data.

Note: The user is required to create a work profile even when you deactivate work profile creation or make it optional (In the Admin console, go to DevicesMobile & endpointsSettingsAndroid settingsWork ProfileWork Profile Setup).

A work profile isn't required when users select Use for work only when they set up their personal device. However, the organization still manages the device and the user can't add personal accounts. If the account is wiped remotely, the device is reset to its factory settings and all data is removed.