Installing applications via Android Packages (APKs) outside of the Google Play Store
Last adaption: 07.2023
New:
- New section Error Message / Troubleshooting
Insecure Key Size - Screenshots updated
notempty
This article refers to a Resellerpreview
Apps in the Play Store go through a review by Google.
APKs without this check pose a significant security risk. Be it through targeted malicious code that lands unchecked on the device due to installation from unknown sources, or even just bad code that contains unknown security vulnerabilities.
APKs without this check pose a significant security risk. Be it through targeted malicious code that lands unchecked on the device due to installation from unknown sources, or even just bad code that contains unknown security vulnerabilities.
Installation options
Manual (not recommended!)
- Open profile → Restrictions tab:
- Untrusted apps policy → "Allow"
- Applications tab (if Play Store Mode is on Approval List)
- Add package name
- Installation type Available or Force installation
- Install APK manually on the devices
- Untrusted apps policy → "Do Not Allow"
- No review by Google → No quality assurance
- No verification by Google Play Protect → Changes to the original source code are not detected
- No update channel → New versions must be installed manually again
- Each device must be updated individually
Private Apps (not recommended!)
- Open profile
- Applications tab
- Add application
- Select application button (Google Play Store dialog opens)
- Menu left side: private Apps
- Upload Private App
→ High developer effort: A separate APK must exist for each customer
per closedTrack in cooperation with the developer
Use of
Google explicitly provides for the use of closed tracks not only for beta versions with a closed circle of testers, but also "... customers may need more granular control over which versions of an app reaches end users."→Managed Google Play Help
This procedure offers the following advantages:
Requirements (developer-side steps) | |||
---|---|---|---|
| |||
Unified Security Portal → → → → Open profile → Tab Applications | |||
Application | Add application | ||
Package name | de.securepoint.ms.agent | Add package name (must be provided by the app developer) | |
Installation type | Available Force installation |
Select appropriate installation type: Available or Force installation | |
Accessible Track IDs | AppName-closedTrack |
| |
Error message / Troubleshooting
Error message | Cause | Solution |
---|---|---|
APK has been signed with an insecure key size | Google classifies the key length as too insecure | Google requires a key length of at least 2048 bits. Create new key with at least this bit length. |