Installing apps from unknown sources on Xiaomi smartphones is a necessary feature for many users who want to download APK- files outside the official Google Play Store. However, by default, MIUI blocks this feature for security reasons. In this article, we will discuss how to correctly allow such applications to be installed on different versions of the firmware, what risks this entails and how to minimize potential threats.
It's important to understand that unlocking this option doesn't mean you're automatically installing malware, it just gives you control over the download sources, but without due care, you might run into viruses, spyware, or unstable systems, and we'll show you how to enable the feature on Redmi, POCO, Mi, and other devices, and we'll give you security recommendations.
If you use Xiaomi at work or store sensitive data on your phone, think twice before activating this option. For most users, official sources are enough, but sometimes (for example, for beta testing or regional applications), alternative APKs become a necessity.
Why is Xiaomi blocking the installation from unknown sources?
Xiaomi manufacturer by default disables the ability to install APK from third-party sources not because of a whim, but for several objective reasons:
- ๐ก๏ธ Malware protection: Most Android viruses are spread through fake APK- files masquerading as popular apps (such as modified versions of WhatsApp or Instagram).
- ๐ Security Control MIUI. The firmware MIUI is integrated with Xiaomi Security antivirus, which scans the apps being installed. Third-party APK bypasses this control.
- ๐ฑ Compatibility and stability. Not all APK- files are optimized for a particular version of MIUI. This can cause crashes, overheating, or rapid battery discharge.
- ๐ License Restrictions: Some apps (e.g. Netflix or banking services) require Google Play Protect certification, which is not passed by pirated versions.
However, the lock is not absolute: Xiaomi allows you to manually allow installation for specific applications (such as a browser or file manager) rather than for the entire system.
โ ๏ธ Warning: If you enable installation from unknown sources for the Browser or File Manager, any downloaded APK will be installed without further warning. Always check the source of the file!
In the following sections, we will show you how to enable this option on different versions of MIUI, and what tools will help you check for viruses before installing an APK.
How to allow APK installation on Xiaomi: step-by-step instructions for MIUI 12-14
The process of enabling the installation from unknown sources depends on the firmware version, and below is a universal algorithm that is suitable for most Xiaomi, Redmi and POCO devices on MIUI 12, 13 or 14.
If you have an older version (e.g. MIUI 11), the path to settings may be slightly different, but the logic remains the same, and the main thing is to find the section "Installation from unknown sources" (or "Special permissions" in new versions).
Step 1: Open the security settings
Go to the โ App Settings โ Application Management. In the upper right corner, click three dots (โฎ) and select "Special Permissions."
Step 2: Find the section "Install Unknown Applications"
In the permission list, look for "Install Unknown Applications" (or "Install from Unknown Sources" in older versions) and a list of all applications that may request APK installation will be displayed.
Step 3: Select an application to unlock
For example, if you plan to install an APK through Google Chrome, look it up in the list and tap it. In the window that opens, translate the "Allow installation from this source" slider to the ICS position.
Similarly, installation for:
- ๐ Browsers (Chrome, Firefox, Mi Browser)
- ๐ Files by Google, Mi File Manager
- ๐ฅ Messengers (Telegram, WhatsApp โ if you receive APK through them)
Download APK only from verified sources (APKMirror, official sites)
Check the hash amount of the file (if provided by the developer)
Enable installation for a specific application (not for everyone at once)
Create a backup copy of important data
-->
Once you activate the resolution, you can install the APK downloaded through the selected application. For example, if you have allowed installation for Chrome, when you try to open the downloaded APK- file, you will see the "Install" button instead of blocking.
โ ๏ธ Warning: The MIUI 14 on some models (e.g., Xiaomi 13 or Redmi Note 12 Pro+) may require additional password or fingerprint confirmation when first installing APK.
Video Instructions (if visualization is required)
If the text instructions seem complicated, you can watch the official video from Xiaomi on the topic (available on YouTube).Look for videos marked "MIUI 14" or "For Redmi/POCO" as the interface may differ.
Different Xiaomi models: Redmi, POCO, Mi
While the general logic of enabling an installation from unknown sources is the same for all Xiaomi devices, there are nuances for different lines and firmware versions.
| Model/Lineak | MIUI version | Features of inclusion | Additional security measures |
|---|---|---|---|
| Redmi Note 10/11/12 | MIUI 12.5โ14 | Path: Settings โ Applications โ Application Management โ Special permissions. Some models require confirmation through a Google account. | When the first APK installation is installed, a warning appears about the source verification. |
| POCO F3/F4/F5 | MIUI 13โ14 (POCO Launcher) | Similar to Redmi, but in settings it can be displayed as "Installation from external sources." On the POCO F5 there is a separate switch for ADB- installation. | POCO Launcher has an integrated APK scanner before installation. |
| Xiaomi 12/13/14 | MIUI 13โ14 | On flagships, the path may differ: Settings โ Privacy โ Special permissions. Biometric authentication (fingerprint or Face ID) is required. | Xiaomi 13 Ultra has an option called โSandbox for APKโ (insulation of unverified applications). |
| Redmi A1/A2 (budget) | MIUI 12 (Go Edition) | Simplified interface: Settings โ Applications โ Permissions โ Install unknown applications. There are no additional checks. | It is recommended to install only APKs from official sites (e.g. APKMirror). |
If your model is not in the table, focus on the MIUI version. For example, for Redmi 9A (MIUI 12) the instruction for Redmi Note 10 will suit, and for POCO X6 Pro (MIUI 14) โ for POCO F5.
Some devices (e.g. Xiaomi Pad 6) may require unlocking the bootloader to install certain APKs. This is a separate procedure that is not related to security settings, and we do not recommend it without experience.
What if the option "Install unknown applications" is not available?
How to check APK pre-installing viruses?
The resolution of installation from unknown sources is only half the battle, and it is much more important to make sure that the APK- file itself is safe. Here is the 3 reliable way to verify:
1. Online scanners (without installation)
Download APK to one of the services:
- ๐ VirusTotal scans over 70 antivirus files, shows the file's reputation and details about the developer.
- ๐ก๏ธ APKCombo Analyzer โ checks the hash amount and compares it to the official versions.
- ๐ Kaspersky APK Checker analyzes the behavior of an application in a sandbox.
If at least 2-3 antiviruses on VirusTotal label a file as dangerous, do not install it.
2. Local antivirus (after download)
Install one of these apps on your phone and scan the APK before installing:
- ๐ก๏ธ Malwarebytes specializes in spyware detection.
If the antivirus found in APK modules to send SMS to paid numbers or access geolocation for no reason - this is 100% malware.
3. Verification of digital signature and hash
The official APK- files are digitally signed by the developer, and you can compare the hash amount of the downloaded file to the official one:
- Download the Hash Droid utility from Google Play.
- Open your APK- file and write down the value of SHA-256.
- Compare it to the hash on the official website of the application (for example, on GitHub or APKMirror).
If the hashes donโt match, the file has been modified (possibly a virus has been embedded in it).
๐ก
Before installing an APK, create a restore point in Settings โ System โ Backup. This will help roll back changes if the application damages the system.
Frequent mistakes and how to fix them
Even after enabling permission to install APK, Xiaomi users are faced with errors. Let's look at the most common and ways to solve them.
Error: "Installation blocked by security policy"
Reason: Administrator mode is activated on the device (e.g., through Find My Device or corporate policies).
Decision:
- Go to Settings โ Passwords and Security โ Device Administrators.
- Disable unnecessary administrators (such as Android Device Manager).
- Repeat the installation attempt.
Error: "APK not identified" (without explanation)
The reasons may be different:
- ๐ฑ File corrupted (not fully downloaded).
- ๐ง APK is intended for a different processor architecture (e.g. arm64 instead of arm).
- ๐ You don't have enough memory in the /data section.
Solution: Try to download APK again, check compatibility with your model on the developerโs website.
Error: "The app does not meet the requirements of Google Play Protect"
This warning will appear if:
- The APK is modified (e.g., a hacked version of the game).
- The application uses outdated libraries.
- The file has not been certified by Google.
Solution: If you trust the source, you can ignore the warning by clicking "Install despite the risk." But you'd better find an alternative APK.
If none of the solutions worked, try installing APK through ADB (for power users).
adb install path/to/file.apk4.The application is installed, but not opened
Possible causes:
- ๐ฑ Incompatible with MIUI or Android.
- ๐ No necessary permissions (e.g. access to storage) are available.
- ๐ ๏ธ Conflict with other applications (e.g., two launchers).
Solution: Check the application requirements on the developerโs website or try reinstalling it.
๐ก
If the APK is not installed despite all attempts, the problem is most likely in the file itself.
Security: How to minimize risks?
Allowing installations from unknown sources opens up potential vulnerabilities, and follow these rules to protect your device:
- ๐ Turn off the resolution after installation. Return the slider to the OFF position for the application that installed APK. This will prevent the automatic installation of malicious files in the future.
- ๐ฅ Download APK only from trusted sites: APKMirror (checks hashes and signatures); official developer sites (e.g. Telegram, VK); and F-Droid (open source, no ads).
- ๐ก๏ธ Use a sandbox. Some Xiaomi devices (e.g. Xiaomi 13) have an option called "Run in an Isolated Environment" for unverified APK, activate it in the security settings.
- ๐ Update MIUI regularly. New firmware versions close vulnerabilities that can exploit malicious APK.
If you frequently install APKs from third-party sources, consider using an alternative launcher (like Nova Launcher) that allows you to manage permissions for applications faster.
โ ๏ธ Warning: Some banking applications (e.g., SberBank Online or Tinkoff) may block access if they detect established sources from unknown sources APK.
If you notice suspicious behavior after installing an APK (for example, your phone starts to warm up, discharge quickly, or send SMS without your knowledge), immediately:
- Remove the application through Settings โ Apps.
- Scan the device with an antivirus.
- If necessary, reset to factory settings.