The Apple Sharing Restrictions Policy allows administrators to control and restrict the sharing features available on macOS, iOS, and iPadOS devices.
This policy is essential for organizations that handle sensitive data or operate in regulated environments and need to limit usersโ ability to share files, screens, internet connections, and device access.
Using this policy, IT administrators can centrally disable modification of key sharing-related system settings, ensuring a secure and consistent configuration across all managed Apple devices.
Overview
Apple devices include multiple sharing services (AirDrop, printer sharing, remote access, internet sharing, Bluetooth sharing, file sharing, screenshots, and more).
Unrestricted access to these features may expose the device to security risks or data leakage.
The Apple Sharing Restrictions Policy allows administrators to prevent users from modifying these sharing settings, effectively enforcing organizational compliance and ensuring that security controls cannot be bypassed.
Requirements
macOS 10.14+
iOS 13.0+
iPadOS 13.0+
Device must be enrolled in Swif.ai MDM
Some settings apply only to macOS; others apply across iOS and iPadOS
Configurable Settings
Below is a full breakdown of all available configuration options in the Apple Sharing Restrictions Policy.
Allow Remote Apple Events Modification
Controls whether users can modify Remote Apple Events settings.
Setting | Description | Minimum Requirement |
True | Allows modification of Remote Apple Events settings. | macOS 14+ |
False | Prevents users from changing settings related to Remote Apple Events. | macOS 14+ |
Remote Apple Events can allow remote control of the Mac; blocking modification strengthens security.
Allow Internet Sharing Modification
Controls whether users can modify Internet Sharing, which allows a device to act as a hotspot.
Setting | Description | Minimum Requirement |
True | Users can enable/modify Internet Sharing. | macOS 14+ |
False | Prevents changes to Internet Sharing settings. | macOS 14+ |
Internet Sharing can expose internal networks; disabling modification is strongly recommended.
Allow Printer Sharing Modification
Controls access to Printer Sharing, which exposes printers to other devices.
Setting | Description | Minimum Requirement |
True | Allows users to configure Printer Sharing. | macOS 14+ |
False | Prevents changes to Printer Sharing settings. | macOS 14+ |
Recommended for environments where printers must remain centrally managed.
Allow Bluetooth Sharing Modification
Controls the ability to modify Bluetooth Sharing settings, which can affect file transfers and device pairing.
Setting | Description | Minimum Requirement |
True | Bluetooth sharing settings may be changed. | macOS 14+ |
False | Prevents modification of Bluetooth sharing settings. | macOS 14+ |
Use to prevent unauthorized peripheral pairing or wireless file sharing.
Allow File Sharing Modification
Controls access to File Sharing, which enables network-based folder sharing.
Setting | Description | Minimum Requirement |
True | Users can configure File Sharing settings. | macOS 14+ |
False | Users cannot modify File Sharing preferences. | macOS 14+ |
File Sharing can unintentionally expose sensitive directories; locking it down enhances security.
Allow ARD Remote Management Modification
Controls whether users can modify Apple Remote Desktop (ARD) remote management settings.
Setting | Description | Minimum Requirement |
True | ARD settings may be changed. | macOS 14+ |
False | ARD settings are locked and cannot be modified by users. | macOS 14+ |
ARD is a powerful remote access tool; restricting modification prevents unauthorized remote control.
Allow Screen Shot
Controls whether users can take screenshots.
This setting applies across macOS, iOS, and iPadOS.
Setting | Description | Minimum Requirement |
True | Screenshots are allowed. | macOS 10.15+, iOS 13+, iPadOS 13+ |
False | Disables screenshots and prevents screen capture. | macOS 10.15+, iOS 13+, iPadOS 13+ |
Important Note:
On supervised iOS/iPadOS devices, disabling screenshots also prevents Classroom app from observing student screens.
Best Practices
Disable file sharing, printer sharing, and Bluetooth sharing modification to reduce risk of local network exposure.
Disable Internet Sharing modification to prevent users from creating unmanaged Wi-Fi hotspots.
Use ARD modification restrictions where remote management needs to remain enforced by IT only.
Disable Screenshot capability for environments working with confidential information (finance, healthcare, R&D).
Pair this policy with the Apple Security Policy and Apple Firewall Policy for a complete endpoint security posture.
How to Configure
Go to Swif Admin Console โ Policies โ Create New Policy
Select Apple Sharing Restrictions Policy
Configure the sharing features you want to restrict
Click Continue, then assign the policy to the appropriate device groups
Save and deploy the policy
The device will apply changes automatically on the next sync.
Compliance & Security Benefits
Prevents unauthorized sharing or exposure of sensitive data
Ensures consistent and secure device configurations
Helps organizations maintain compliance with SOC 2, HIPAA, ISO 27001, and other frameworks
Reduces IT overhead by locking system settings users should not modify