1

Our business uses about 60 tablets assigned to users. Each user has a unique Gmail business account. If a user leaves the company I get their tablet back and am expected to ready it for the next user.

If they change their log in password I can easily get past that with a factory reset. However I am blocked by the Google FRP if I cannot access their Google account due to passwords unknown to me.

What is the best practice to avoid this. One idea was to create an account on each tablet and link it to Google before handing the device out. Assuming the user did not delete the account I put on the device there should always be a way for me to get past the FRP simply by doing a factory reset and then logging into the account I produced.

Is this a sound practice and will it work? Any advice is appreciated.

7 Spice ups
2

Try looking in to Samsung KNOX works IMHO best on this kind of application.

1 Spice up
3

You should also make it a condition of employment that all IT equipment has to be reset (leavers should discuss with IT if they are not sure how to do this)) on leaving the Company or else the Company can view it as not returned, Or words to that effect. Hopefully, being reminded about this condition of employment will encourage leavers to be cooperative.

4

Samsung Knox is definitely a great out of the box solution if you’re working in a very Samsung heavy shop. There are a raft of MDM solutions out there that provide good control over your enrolled devices, but as ever prices will vary.

Personally I’m a big fan of SOTI Mobicontrol as it casts a fairly wide net, and provides support for older windows devices which can be a plus.