A configuration profile is installed on the device which was responsible for putting the device in a vulnerable state. For example, sets a VPN that was later found responsible for a MitM attack.
Uninstall the configuration profile in the device's settings.
Incidents section, devices that have disabled their passcode are reported to the console.
By default, a similar notification is displayed on the device.
By default, similar information is displayed in the mobile agent app.