Google, like other platform owner like Apple, tighten many MDM policies that may seriously affect end-user privacy, and some previous available policies are no longer supported by the MDM API defined by the platform owner. As a result, all MDM software that used to have the feature will no longer support them because of the change controlled by the platform owner. Thus, on recent newer firmware versions, it is no longer possible to set a new PIN/password to your Android or iOS devices via MDM web console or scripts.
You can lock or enable iOS lock mode if the device is reported to have been lost/stolen. For recovered lost device or device whose owner forgets his/her PIN password, MDM administrator can only remotely clear/disable the passcode, and the device will be unlocked and device user be prompted to input a new password/PIN on the device. This way, MDM administrator won't know what the new password/PIN is.
What Mobicontrol version and build do you have installed and what agent version (number, ELM vs Non ELM and Manufacturer) are you using with your device?
I have reviewed an internal ticket for this, where this was though to be expected behavior due to the MDM limitation in the newer OS versions but may actually have been fixed in an a more recent agent version.
Technical Support | SOTI Inc. |1.905.624.9828 | firstname.lastname@example.org | www.soti.net |
Agent 13.5.0 Build 1474
Active MDM API: Work Managed Device, Zebra EMDK, RemoteView (22.214.171.124)
But now after the reset passwort, the password is required at the device startup too.
How to disable this?
Just disable "secure startup" in the Security tab in Settings.