Android 15 為企業提供的新功能'
透過集合功能整理內容
你可以依據偏好儲存及分類內容。
本頁概要列出 Android 15 (API 級別 35) 所提供的企業 API、功能和行為變更。
加強對員工和裝置的保護
Android 15 強化了員工和裝置防護功能,例如竊盜防護、網路釣魚控制項,以及個人資料夾的私人空間。
Android 失竊防護
- 防止機密業務資料遭竊。
- 加強隱私權保護,防止未經授權存取使用者個人資料。
個人資料夾的私人空間
- 私人空間是 Android 15 的新功能,可讓使用者在個人設定檔中建立獨立區域,並透過額外驗證機制保護特定個人應用程式,避免在公共空間工作時遭到窺視。
- 在受管理的裝置上:
維持 NIAP 法規遵循
Android 15 會將現有的備份服務稽核記錄事件從 logcat 遷移至安全記錄,並採用 SecurityLog.TAG_BACKUP_SERVICE_TOGGLED
的正式定義。
提升公司裝置管理效率
Android 15 簡化了 eSIM 卡管理作業、新增 Android 工作資料夾的「畫圈搜尋」控制項,以及為公司裝置新增更多自訂選項,進一步強化公司裝置管理功能。
簡化受管理裝置的 eSIM 卡管理作業
- Android 15 新增了平台 API,可讓 IT 管理員在受管理裝置上遠端佈建 eSIM 卡設定檔。包括對 eSIM 卡設定檔的新控制選項。
- 我們推出「受管理 SIM 卡」/「受管理訂閱」的概念,
支援下列功能:
- IT 管理員可以透過程式輔助下載及刪除 eSIM 卡設定檔。
- 在公司裝置上,IT 管理員可以在下載後無聲啟用 eSIM。此外,使用者無法刪除管理員下載的受管理 eSIM。IT 管理員可以設定
DISALLOW_CONFIG_MOBILE_NETWORKS
使用者限制,禁止使用者刪除受管理 eSIM 卡。
- 自攜裝置 (BYOD) 使用者可以隨時選擇刪除 SIM 卡。
Android 工作資料夾的「畫圈搜尋」控制項
- 管理員可以選擇在全代管裝置或 Android 工作資料夾中封鎖「畫圈搜尋」功能。
- 使用者在工作時可以更順暢地搜尋。
公司自有裝置的其他自訂項目
- Android 15 適用於個人公司裝置 (COPE),可自訂螢幕亮度和逾時控制項,延長電池續航力。全代管裝置先前已提供這項功能。
- 在個人公司裝置 (COPE) 上強制執行個人資料夾的預設設定。
- IT 管理員可以在設定前強制使用 OEM 預設的撥號、訊息和瀏覽器應用程式,並使用
DISALLOW_CONFIG_DEFAULT_APPS
防止使用者變更這些應用程式。
- 如要在裝置設定完成後設定預設值,則必須搭配應用程式許可清單控制項使用。
- 只有在應用程式已加入使用者的個人設定檔時,IT 管理員才能將其設為預設應用程式。
這個頁面中的內容和程式碼範例均受《內容授權》中的授權所規範。Java 與 OpenJDK 是 Oracle 和/或其關係企業的商標或註冊商標。
上次更新時間:2025-08-27 (世界標準時間)。
[[["容易理解","easyToUnderstand","thumb-up"],["確實解決了我的問題","solvedMyProblem","thumb-up"],["其他","otherUp","thumb-up"]],[["缺少我需要的資訊","missingTheInformationINeed","thumb-down"],["過於複雜/步驟過多","tooComplicatedTooManySteps","thumb-down"],["過時","outOfDate","thumb-down"],["翻譯問題","translationIssue","thumb-down"],["示例/程式碼問題","samplesCodeIssue","thumb-down"],["其他","otherDown","thumb-down"]],["上次更新時間:2025-08-27 (世界標準時間)。"],[],[],null,["This page provides an overview of the enterprise APIs, features, and behavior\nchanges introduced in Android 15 (API level 35).\n\nEnhanced employee and device protection\n\nAndroid 15 enhances employee and device protection with features like theft\nprotection, phishing controls, and private space for personal profiles.\n\nAndroid theft protection\n\n- Protect sensitive business data from theft.\n- Enhance your privacy and prevent unauthorized access to users' personal data.\n\nPrivate space for personal profile\n\n- [Private space](/about/versions/15/features#private-space) is a new feature in Android 15 that lets users create a separate area within their personal profile under an additional layer of authentication, to shield specific personal apps while working in public spaces.\n- On managed devices:\n - Administrators are able to block users from having a private space and remove an existing private space on the personal profile of a corporate owned device. See [`UserManager.DISALLOW_ADD_PRIVATE_PROFILE`](/reference/android/os/UserManager#DISALLOW_ADD_PRIVATE_PROFILE).\n - Existing personal app allowlists and blocklists also apply to the private space on devices managed by the [`Android Management API`](https://developers.google.com/android/management/reference/rest/v1/enterprises.policies#PersonalApplicationPolicy). This feature will be available to [`custom DPCs`](/work/dpc/build-dpc) in the future.\n - Private space is not available on fully managed devices.\n - A new [`UserManager.USER_TYPE_PROFILE_PRIVATE`](/reference/android/os/UserManager#USER_TYPE_PROFILE_PRIVATE) is now available.\n\nNIAP compliance maintenance\n\nAndroid 15 migrates existing backup service audit logging events from logcat to\nsecurity log with the formal definition of\n[`SecurityLog.TAG_BACKUP_SERVICE_TOGGLED`](/reference/android/app/admin/SecurityLog#TAG_BACKUP_SERVICE_TOGGLED).\n\nStronger management of company-owned devices\n\nAndroid 15 strengthens company-owned device management by simplifying eSIM\nmanagement, adding controls for Circle to Search on Android Work Profile, and\nadding more customization options for corporate-owned devices.\n\nSimplify eSIM management on managed devices\n\n- Android 15 adds platform APIs to allow an IT Admin to remotely provision eSIM profiles onto managed devices. This also includes new controls over the eSIM profiles.\n- We introduce the concept of a \"Managed SIM\"/\"Managed Subscription\", supporting the following features:\n - IT admins can download and delete the eSIM profiles programmatically.\n - On company-owned devices, the IT admin can activate the eSIM silently after download. Also, users can't delete the admin-downloaded managed eSIM. IT admins can set [`DISALLOW_CONFIG_MOBILE_NETWORKS`](/reference/android/os/UserManager#DISALLOW_CONFIG_MOBILE_NETWORKS) user restriction to disallow users from deleting the managed eSIM.\n - Bring your own device (BYOD) users can choose to delete the SIM at any time.\n\nControls for Circle to Search on Android Work Profile\n\n- Admins can choose to block the Circle to Search feature on fully managed devices or within an Android Work Profile.\n- Users can search more seamlessly at work.\n\nAdditional customization for corporate-owned devices\n\n- Extend battery life with customizable screen brightness and timeout controls, which are included in Android 15 for corporate-owned, personally enabled (COPE) devices. This feature already existed for fully managed devices.\n- Enforce the defaults for the personal profile on company-owned, personally enabled (COPE) devices.\n - IT admins can enforce the OEM-default dialer, messages, and browser apps prior to set up, and prevent the end user from changing them using [`DISALLOW_CONFIG_DEFAULT_APPS`](/reference/android/os/UserManager#DISALLOW_CONFIG_DEFAULT_APPS).\n - Setting the defaults after setup must be combined with app allowlist controls.\n - IT admins can only make an app the default if it's already in the user's personal profile."]]