• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1# Permissions for Enterprise Applications
2
3The following permissions are available to <!--Del-->system applications and <!--DelEnd-->enterprise applications. Enterprise applications include normal enterprise apps and Mobile Device Management (MDM) applications.
4
5The distribution type of enterprise applications can be **enterprise_normal** (normal enterprise application) or **enterprise_mdm** (MDM application). You can <!--RP1-->obtain the distribution type from the **app-distribution-type** field in the [HarmonyAppProvision configuration file](../app-provision-structure.md).<!--RP1End-->
6
7For details about how to request the permissions for enterprise applications, see [declaring permissions](declare-permissions.md).
8
9## ohos.permission.SET_FILE_GUARD_POLICY
10
11Allows an application to update the file guard policy.
12
13**Permission level**: system_basic
14
15**Authorization mode**: system_grant
16
17<!--Del-->
18**Enable via ACL**: true<!--DelEnd-->
19
20**Valid since**: 10
21
22**Changelog**: For API versions 10 to 14, this permission is of the system_core level and available only to MDM applications. Starting from API version 14, the permission level is changed to system_basic and this permission is accessible to normal enterprise applications.
23
24## ohos.permission.FILE_GUARD_MANAGER
25
26Allows an application to scan media and sandbox and set file extended properties.
27
28**Permission level**: system_basic
29
30**Authorization mode**: system_grant
31
32<!--Del-->
33**Enable via ACL**: true<!--DelEnd-->
34
35**Valid since**: 10
36
37**Changelog**: For API versions 10 to 14, this permission is of the system_core level and available only to MDM applications. Starting from API version 14, the permission level is changed to system_basic and this permission is accessible to normal enterprise applications.
38
39## ohos.permission.INTERACT_ACROSS_LOCAL_ACCOUNTS
40
41Allows an application to interact across local accounts.
42
43**Permission level**: system_basic
44
45**Authorization mode**: system_grant
46
47<!--Del-->
48**Enable via ACL**: true<!--DelEnd-->
49
50**Valid since**: 7
51
52**Changelog**: This permission is available only to system applications in API versions 7 to 13. From API version 14, it is available to normal enterprise applications.
53
54## ohos.permission.GET_RUNNING_INFO
55
56Allows an application to obtain running status information of another application.
57
58**Permission level**: system_basic
59
60**Authorization mode**: system_grant
61
62<!--Del-->
63**Enable via ACL**: true<!--DelEnd-->
64
65**Valid since**: 7
66
67**Changelog**: This permission is available only to system applications in API versions 7 to 13. From API version 14, it is available to normal enterprise applications.
68
69## ohos.permission.RUNNING_STATE_OBSERVER
70
71Allows an application to listen for the state of another application.
72
73**Permission level**: system_basic
74
75**Authorization mode**: system_grant
76
77<!--Del-->
78**Enable via ACL**: true<!--DelEnd-->
79
80**Valid since**: 7
81
82**Changelog**: This permission is available only to system applications in API versions 7 to 13. From API version 14, it is available to normal enterprise applications.
83
84## ohos.permission.GET_BUNDLE_INFO_PRIVILEGED
85
86Allows an application to obtain basic information and sensitive information about another application.
87
88**Permission level**: system_basic
89
90**Authorization mode**: system_grant
91
92<!--Del-->
93**Enable via ACL**: true<!--DelEnd-->
94
95**Valid since**: 7
96
97**Changelog**: This permission is available only to system applications in API versions 7 to 13. From API version 14, it is available to normal enterprise applications.
98
99## ohos.permission.GET_WIFI_CONFIG
100
101Allows an application to obtain the Wi-Fi configuration.
102
103**Permission level**: system_basic
104
105**Authorization mode**: system_grant
106
107<!--Del-->
108**Enable via ACL**: true<!--DelEnd-->
109
110**Valid since**: 8
111
112**Changelog**: This permission is available only to system applications in API versions 8 to 14. From API version 15, it is available to normal enterprise applications.
113
114## ohos.permission.MANAGE_NET_FIREWALL
115
116Allows a system application to configure firewall rules.
117
118Currently, this permission is available only to 2-in-1 device applications.
119
120**Permission level**: system_basic
121
122**Authorization mode**: system_grant
123
124<!--Del-->
125**Enable via ACL**: true<!--DelEnd-->
126
127**Valid since**: 12
128
129**Changelog**: This permission is available only to system applications in API versions 12 to 14. From API version 15, it is available to normal enterprise applications.
130
131## ohos.permission.GET_NET_FIREWALL
132
133Allows a system application to obtain firewall rules and firewall interception records.
134
135Currently, this permission is available only to 2-in-1 device applications.
136
137**Permission level**: system_basic
138
139**Authorization mode**: system_grant
140
141<!--Del-->
142**Enable via ACL**: true<!--DelEnd-->
143
144**Valid since**: 12
145
146**Changelog**: This permission is available only to system applications in API versions 12 to 14. From API version 15, it is available to normal enterprise applications.
147
148## ohos.permission.SET_WIFI_CONFIG
149
150Allows an application to configure Wi-Fi information.
151
152**Permission level**: system_basic
153
154**Authorization mode**: system_grant
155
156<!--Del-->
157**Enable via ACL**: true<!--DelEnd-->
158
159**Valid since**: 8
160
161**Changelog**: This permission is available only to system applications in API versions 8 to 14. From API version 15, it is available to normal enterprise applications.
162
163## ohos.permission.GET_DOMAIN_ACCOUNTS
164
165Allows an application to obtain domain account information.
166
167**Permission level**: system_basic
168
169**Authorization mode**: system_grant
170
171<!--Del-->
172**Enable via ACL**: true<!--DelEnd-->
173
174**Valid since**: 10
175
176**Changelog**: This permission is available only to system applications in API versions 10 to 13. From API version 14, it is available to normal enterprise applications.
177
178## ohos.permission.QUERY_AUDIT_EVENT
179
180Allows an application to query security audit events.
181
182**Permission level**: system_basic
183
184**Authorization mode**: system_grant
185
186<!--Del-->
187**Enable via ACL**: true<!--DelEnd-->
188
189**Valid since**: 12
190
191**Changelog**: This permission is available only to MDM applications in API versions 12 to 13. From API version 14, it is available to normal enterprise applications.
192
193## ohos.permission.KILL_APP_PROCESSES
194
195Allows a system application to kill other applications.
196
197**Permission level**: system_basic
198
199**Authorization mode**: system_grant
200
201<!--Del-->
202**Enable via ACL**: true<!--DelEnd-->
203
204**Valid since**: 12
205
206**Changelog**: This permission is available only to system applications in API versions 7 to 13. From API version 14, it is available to normal enterprise applications.
207
208## ohos.permission.SET_TELEPHONY_ESIM_STATE_OPEN
209
210Allows a system application or carrier application to set the eSIM nickname and activate the eSIM.
211
212**Permission level**: system_basic
213
214**Authorization mode**: system_grant
215
216<!--Del-->
217**Enable via ACL**: true<!--DelEnd-->
218
219**Valid since**: 14
220
221**Changelog**: Since API 14, the permission level is changed to system_basic, and this permission is available only to normal enterprise applications instead of all applications.
222
223## ohos.permission.MANAGE_ENTERPRISE_WIFI_CONNECTION
224
225Allows an application to manage Wi-Fi connections.
226
227**Permission level**: system_basic
228
229**Authorization mode**: system_grant
230
231**Enable via ACL**: true
232
233**Valid since**: 15
234
235## ohos.permission.MANAGE_NET_FIREWALL
236
237Allows a system application to configure firewall rules.
238
239Currently, this permission is available only to 2-in-1 device applications.
240
241**Permission level**: system_basic
242
243**Authorization mode**: system_grant
244
245<!--Del-->
246**Enable via ACL**: true<!--DelEnd-->
247
248**Valid since**: 12
249
250**Changelog**: This permission is available only to system applications in API versions 12 to 14. From API version 15, it is available to normal enterprise applications.
251
252## ohos.permission.GET_NET_FIREWALL
253
254Allows a system application to obtain firewall rules and firewall interception records.
255
256Currently, this permission is available only to 2-in-1 device applications.
257
258**Permission level**: system_basic
259
260**Authorization mode**: system_grant
261
262<!--Del-->
263**Enable via ACL**: true<!--DelEnd-->
264
265**Valid since**: 12
266
267**Changelog**: This permission is available only to system applications in API versions 12 to 14. From API version 15, it is available to normal enterprise applications.
268