iManage Work Mobility for iOS supports MAC in two ways:

You can use iManage Control Center to create an .immconfig file and load it into our MDM tool.
If a file upload is not supported on your MDM tool, you can manually enter the key-value pairs.

IMPORTANT:

Identifiers are case sensitive and must match exactly as defined.

For more information on configuration files deployment, see the Deploying configuration files chapter in iManage Work Mobility Documentation of Help Center.

The following table lists the key-value pairs that can be specified:

Table: Key-value Pairs

Identifier	Type	Default	Description
version	Integer	2	Specifies the format version for configuration and is required. It must be set to 2.
POLICY CONFIGURATION
open_in_receive	Boolean	true	Use this policy to restrict users from receiving document(s) in iManage Work Mobility for iOS from other applications. Set one of the following parameters: true - users can import documents to iManage Work Mobility for iOS from other applications. false - restricts the users from importing documents to the iManage Work Mobility for iOS from other applications. NOTE: This feature may be restricted or disabled due to MDM policies.
open_in_send	Boolean	true	Use this policy to restrict users from sending document(s) in iManage Work Mobility for iOS to other applications. Set one of the following parameters: true - enables the users to send documents from iManage Work Mobility for iOS to other applications through Open In feature of iOS. false - documents cannot be sent from iManage Work Mobility for iOS to other applications. NOTE: This feature may be restricted or disabled because of MDM policies. When this value is set to false, AirPrint and AirDrop are automatically disabled as well. NOTE: If the application receiving the file does not support the file type, this feature may be restricted.
enable_native_email	Boolean	true	Use this policy to restrict users from sending document(s) as email attachment from iManage Work Mobility for iOS through native email (Mail app) application. Set one of the following parameters: true - enables the users to send the iManage Work document(s) as email attachments using the iOS Mail app. false - prevents the users from sending iManage Work document(s) as email attachments. NOTE: Emailing a document appears when a user taps the iOS Activity or Email button. If you want to prevent emailing documents, then you must also set enable_open_in_send to false. This also restricts users from editing the document from iManage Work Mobility for iOS. NOTE: NRLs are not restricted by any application policies currently.
enable_app_extensions	Boolean	true	Use this policy to invoke Storage Provider Extension (SPE), which allows native application to access documents from iManage Work Mobility for iOS on users device, in a safe and convenient way . Set one of the following parameters: true - enables the SPE. false - the SPE is disabled. NOTE: If set to false, users can use a native application to view documents in iManage Work Mobility for iOS, but may receive an error when they try to open them.
enable_airdrop	Boolean	true	Use this policy to restrict users from sharing document in iManage Work Mobility for iOS using AirDrop. Apple's AirDrop feature enables the transfer of files among supported macOS computers and iOS devices without using mail or a mass storage device. Set one of the following parameters: true - enables the user to share the downloaded documents through AirDrop. false - disables sharing the documents through AirDrop. NOTE: This feature may be restricted or disabled because of MDM policies. If open_in_send is set to false, AirDrop is always disabled.
enable_printing	Boolean	true	Use this policy to restrict users from printing documents from iManage Work Mobility for iOS. Set one of the following parameters: true - enables the users to print downloaded documents through iOS AirPrint. false - disables the printing of documents. NOTE: This feature may be restricted or disabled due to MDM policies. If open_in_send is set to false, AirPrint is always disabled. IMPORTANT: If your MDM policy configuration restricts emailing documents out of iManage Work Mobility for iOS, users can use Print Preview of a PDF to get around this, as it can be distributed through iOS Mail app. Apple bug report # - 45524779 .
enable_downloading	Boolean	true	Use this policy to restrict users from downloading documents to their mobile devices from iManage Work Mobility for iOS. Set one of the following parameters: true - documents may be downloaded to the device. false - prevents bulk download of documents to the device. NOTE: If enable_downloading is set to false, SPE is disabled.
enable_privacy_curtain	Boolean	true	Use this policy to disable Privacy Curtain. Privacy Curtain is a security feature that obscures the contents of iManage Work Mobility for iOS when the application is not active. Set one of the following parameters for the Privacy Curtain: true - the Privacy Curtain is displayed when the application is not active, obscuring any content that is on the screen. false - the Privacy Curtain is disabled.
enable_touch_id_for_passcode	Boolean	true	Use this policy to prevent users from signing into iManage Work Mobility for iOS through Touch ID on their mobile device. Touch ID is Apple's fingerprint identity sensor and is a form of bio-metric security meant to be more convenient than entering a passcode or password, especially on iPhones, iPads, and Macs. Set one of the following parameters: true - the user gets an option to enable Touch ID when configuring App Lock. false - Touch ID is not offered. NOTE: Even if this setting is true, the Touch ID must be setup and configured on the device first. Also note that this setting may be restricted because of MDM policies. When Touch ID is used, the application passcode (not the iOS passcode) is stored in the Keychain (the application passcode is used as an encryption key). Therefore, the most secure configuration is for Touch ID to be disabled; the application passcode is never stored, and documents cannot be viewed until the user provides the application passcode.
show_demo_connection	Boolean	true	Server connection that connects to a public iManage demo server, which can be used to test the iManage Work Mobility for iOS application before it is deployed in your environment. Set one of the following parameters: true - the Demo connection is displayed at the bottom of the servers list on the sign in screen. false - the Demo connection is not displayed. NOTE: If the user has signed into the Demo connection, it cannot be removed from the list of connections that appears on the side bar. IMPORTANT: iManage recommends you disable the Demo connection for any production environments so that is not visible to users.
number_of_passcode_retries_min_3_max_20_default_10	Integer	10	This is the number of times the application passcode can be entered before all locally stored data is erased from the device (no data is impacted on the server). The minimum value is 3, and the maximum is 20. NOTE: Additionally, you may lose any local changes that you have done on your documents.
passcode_grace_period_seconds_min_10_max_999999999_default_60	Integer	10	When switching away from the application, there is a time delay before the App Lock is enforced, requiring the user to enter the application passcode (or if configured, Touch ID). The minimum is 10 seconds; the maximum is 999999999 seconds (effectively only requiring the user to enter the application passcode or use Touch ID when the application starts or restarts).
prevent_copy_to_clipboard	Boolean	false	Use this policy to restrict users from copying content in iManage Work Mobility for iOS, and pasting it into clipboard or pasteboard. This policy configuration secures iManage Work data. Set one of the following parameters: false - is the default setting, and allows users to copy text from an iManage document to other applications. IMPORTANT: If this key is missing, false is set . true - the clipboard or pasteboard in iManage Work Mobility for iOS is cleared when a user copies text from any document. This effectively stops copying any data from iManage Work Mobility for iOS as the user cannot paste any text into other application(s). IMPORTANT: When you enable `prevent_copy_to_clipboard` policy, it is applied across iManage Work Mobility for iOS, and you cannot select applications (for example, your managed apps) that can be excluded from this restriction.
SERVER CONFIGURATION Any number of servers may be included. These are displayed in numerical order based on the integer in the identifier, starting with 0. For example, server2_uuid is the third server. NOTE: At least one server must be provided to enable the users to connect.
server0_uuid	String	-	A UUID to uniquely identify this entry. These can be generated here. Example: `b985dc4b-3232-4719-9d1d-cf0162badc30` NOTE: After a UUID is assigned to a server, the mapping between the UUID and server cannot be altered as this can cause connectivity issues to the clients. IMPORTANT: UUID cannot be blank or duplicated. If any of the servers have a duplicate or blank UUID, that `.immconfig` file is rejected and a previously passed file is implemented.
server0_name	String	-	The name that is displayed in the application. Example: Chicago
server0_auth	Integer	-	The authentication type for the server. The valid values are: 0 - Explicit/Network 1 - ADFS (On premises ADFS Server) 2 - Common login For more information on how the users are authenticated, see User authentication process.
server0_url	Text	-	The Work Server name that was used during the installation. Please be sure to type the value as a fully qualified domain name that matches the SSL certification. For example, boston_office.abjualaw.com NOTE: Adding HTTPS or ports such as ':8000' to this value are ignored. HTTPS and port 443 are always used. SSL/TLS is always used, in accordance with the most secure settings of iOS security.

User authentication process

Standard login supports both Work credentials and domain/username & password for explicit network authentication. The credentials are stored in an iCloud Keychain.

TIP:

For more information on the iCloud Keychain, go to https://support.apple.com/en-us/HT204085.

A cookie is stored on the device, but it is not shared with other applications or browsers. When the access token expires, it is renewed without displaying the credentials screen. This ensures that the users are not prompted to sign in on the login screen.
However, the login screen is displayed only when:

a user provides invalid credentials (user name or password).
the user credentials have changed on the server.
For example, if your company policy requires the user to change the password after a certain period.

ADFS authentication displays an embedded web view where the user must follow whatever authentication procedures the company has defined for the ADFS implementation.

NOTE:

For more information on configuring authentication, refer to iManage Work Server Administration Guide in Help Center.