Cyber Device Manager for Windows 10 and Windows 11

Codeproof delivers modern Windows device management for distributed teams. Combine native Windows MDM APIs with the lightweight Codeproof Agent to gain deep visibility and control across laptops and desktops. Enroll devices fast, push policies and apps at scale, and keep endpoints secure and compliant.

Windows MDM and endpoint management dashboard

Choose the path that fits each use case: Native Windows MDM for baseline management using built-in OS channels and Agent-based management for advanced controls like rich inventory, software lifecycle, patch automation, kiosk POS, and real-time remote actions.

Related: MDM overview · UEM hub · iOS/iPadOS · Android · macOS · Linux

What you can manage

Command center

Execute instant actions from the cloud console. Lock, wipe, reboot, send message, run scripts, install or remove apps, and refresh policies across a single device or a group.

Policy configurator

Configure more than a thousand Windows settings, including browser controls, application restrictions, desktop settings, local account policies, password complexity, and device hardware access.

Patch management

Automate Windows updates with maintenance windows, deferrals, deadlines, and restart control. Report on update status and compliance so devices stay secure without disrupting users. Optional application patching supports common third-party apps via managed catalogs.

Application lifecycle

Deploy line-of-business and store apps at scale. Version and stage rollouts by device group. Enforce allow or deny lists, manage install context and silent parameters, and remove software that violates policy.

Kiosk and POS

Configure single app or multi app kiosk for retail, hospitality, education, and field operations. Use Assigned Access or custom shell to limit system UI, block Control Panel, and prevent unauthorized apps or actions. Set auto-launch and watchdog restart for point-of-sale and digital signage.

Networking and connectivity

Push Wi-Fi and VPN profiles, certificate chains, and trusted roots. Configure a systemwide proxy for CIPA compliant web filtering in K-12 and regulated environments. Users cannot bypass managed network policies.

Security and compliance

Cybersecurity controls

Enforce Windows security baselines. Manage Windows Defender Antivirus settings, firewall rules, SmartScreen, BitLocker prechecks, removable media policies, and local admin restrictions. Apply web content controls and secure DNS or proxy settings to reduce risk.

Encryption

Enable BitLocker drive encryption and escrow recovery keys. Enforce TPM based protection and compliance checks for laptops and desktops.

Remote actions

Remotely lock or wipe a device, rotate recovery keys, or trigger a compliance remediation script. Protect data when devices are lost, stolen, or reassigned.

Windows device location and asset overview

Inventory, location, and reporting

Collect detailed hardware and software inventory, device health, and policy status. View approximate device location for laptops that support it. Export reports for audits and frameworks like CIS and NIST alignment.

Certificates and identity

Deploy client certificates and trusted roots for secure Wi-Fi, VPN, and application access. Configure SSO related policies where supported and keep credentials out of end user workflows.

Device usage and experience

Control screen timeout, account options, and session limits. Schedule off hours shutdown or sleep to reduce costs. Standardize the experience with corporate wallpaper and lock screen across device groups.

Wi-Fi management

Create and push secure Wi-Fi profiles with certificate based authentication.

VPN management

Configure device VPN profiles and per app routing for sensitive apps.

Certificate management

Distribute and rotate certificates at scale to keep connections trusted.

Custom branding

Publish organization wallpaper and lock screen images by role or location.

Accessibility and user help

Push support contacts and portal links to the desktop so users can get help fast.

FAQs

Does Codeproof support agent-based Windows management?
Yes. Use the Codeproof Cyber Device Manager Agent for advanced inventory, app lifecycle, patch automation, kiosk/POS, and real-time remote actions. Native Windows MDM is also available for baseline policies.
Can I automate Windows updates?
Yes. Create update rings, set maintenance windows and deadlines, control restarts, and report compliance across Windows 10 and Windows 11.
How does kiosk or POS mode work on Windows?
Use single-app or multi-app kiosk with Assigned Access or a custom shell. Limit UI elements and block unauthorized apps to keep devices focused on work.
What security controls are available?
Manage antivirus and firewall settings, BitLocker encryption, removable media, web content rules, and local admin restrictions. Run remediation scripts and perform remote lock or wipe.
Can I deploy and update third-party apps?
Yes. Upload packages or use managed catalogs where available. Assign by device group, control versions, and remove software that violates policy.
Do you support Windows Autopilot zero-touch enrollment?
Yes. Assign Autopilot profiles for zero-touch provisioning with policies and apps applied during OOBE.
Can we enforce BitLocker and escrow recovery keys?
Yes. Enforce BitLocker with policy and escrow recovery information for audit and recovery workflows.
How are apps and updates managed?
Deploy MSI/WinGet/Store apps with rollout rings and control Windows Update deferrals, pauses, and deadlines.
Do you integrate with Entra ID (Azure AD) and on-prem AD?
Yes. Support Entra ID/Azure AD join, Hybrid scenarios, and policy targeting with groups.

Maximize employee productivity through Codeproof