How to disable installation from unknown sources on Xiaomi

Modern Android smartphones, including Xiaomi, Redmi and POCO, They have powerful built-in protection that by default blocks the launch of installation files received from outside the official Google Play store. APK-Third-party files to access modified versions of programs or applications that are not available in the region, which opens a wide door to potential threats, as the operating system is designed to be a very powerful tool for the system. MIUI HyperOS stops tightly controlling the code.

Disabling this feature is a critical step to ensure the digital hygiene of your gadget, especially if the device is used by children or less experienced in technology relatives. Unlike simply removing suspicious software, preventive blocking prevents the very possibility of malicious code entering the system. Below we will discuss in detail the algorithms for the various versions of the shells and explain why standard security settings require your attention.

Risks of Installation of Untested APK-file

Ignoring security warnings when downloading programs from third-party resources often leads to infection of the device with miners or spyware. Malware applications can unobtrusively mine cryptocurrency using the resources of the processor, which causes overheating and rapid battery discharge. In addition, attackers often mask viruses as popular utilities, demanding extended access rights from the user.

Particularly dangerous are programs that request administrator rights or access to the Internet. SMS-Bank Trojans are able to intercept confirmation codes sent by financial institutions, which can lead to direct loss of funds. Even if the antivirus does not formally detect the threat, the behavior of the system can become unstable.

⚠️ Warning: Installing apps from unverified sources is the main reason for intrusive full-screen advertising and screen blockers that require payment to unlock the device.

It’s also worth considering that some “modified” versions of paid apps contain hidden code to steal identity, photos and contact books.The Android operating system has Google Play Protect built-in protections, but they work most effectively when the installation feature from unknown sources is deactivated for all browsers and file managers.

📊 Have you encountered viruses after installation? APK web-site?
Yeah, there was a lot of advertising.
Yeah, the card money's gone.
No, I always bet from the Play Market.
I don't know, I didn't pay attention.

The difference between the global firmware and the Chinese version of MIUI

The interface of security settings on Xiaomi devices can vary significantly depending on the regional version of the software. On global firmware (Global ROM), the menu is often adapted for an international user and contains more understandable wording, whereas on the Chinese versions (China ROM) some items can be hidden or named differently.

Owners of Chinese firmware devices that have been flashed to the global via Fastboot or Recovery may encounter residual interface elements typical of the original version. In such cases, the path to settings may look standard, but the logic of MIUI limitations remains the same: the system requires explicit confirmation for each new source.

Some users mistakenly believe that having root rights or an unlocked bootloader automatically changes the behavior of the security system. In fact, even with full system access, the standard app installer requires separate authorization for each browser or file manager unless the feature is globally disabled via a file manager. ADB-team.

What is the difference between Unknown Sources and Install via USB?
Unknown Sources allows installation APK-files downloaded through the browser. option "Installation through the browser" USB» (Install via USB) It is designed exclusively for developers and allows you to install applications from your computer via a debugging cable. For the average user, the second feature should always be turned off, as it reduces the level of protection of the device from a remote attack through the charging port.

Step-by-step instructions for MIUI 12, 13 and 14

In current versions of the MIUI shell, permission management was centralized, so you don't have to look for settings for each application separately if you want to disable everything at once, but the system requires a detailed approach to each source, and you first need to open the main settings menu of your smartphone.

Go to the privacy section, and depending on the version of the interface, this section may be called Privacy Protection or just Privacy, and this is the key unit for controlling how applications access system functions.

Settings → Privacy Protection → Special Permits → Installation of Unknown Applications

After entering the Install Unknown Apps menu, you will see a list of all the programs that have ever tried to install. APK-file or have the technical ability to do so. This includes browsers (Chrome, Mi Browser), instant messengers (Telegram, WhatsApp) and file managers.

☑️ Checking security settings

Done: 0 / 4

You need to consistently click on each application in the list (like Google Chrome) and move the switch to either “Switched Off” or “Disable,” which is important for all the programs you use to download files to keep your device completely secure.

Security settings in HyperOS (Android 14 and later)

With the release of the new HyperOS operating system, which replaces MIUI, Xiaomi has slightly changed the logic of the setup grouping, focusing on data security. The path to managing the installation of third-party applications has become deeper to prevent accidental changes in parameters by inexperienced users.

First, open Settings and find the Apps section, and unlike previous versions, you need to go to Settings, which is often hidden behind an additional menu or located at the top of the screen as three dots, and that's where Special Options or Special Permissions are hidden.

The algorithm of actions is as follows:

  • 📱 Open Settings and select the Application section.
  • 🔍 Click on Settings (usually at the top or bottom of the list) and select Special Permissions.
  • 🚫 Find the Installation of Unknown Applications and tap it.
  • 🔒 Disable access for all suspicious or unnecessary programs, leaving only the file manager active if you plan to install. APK internal.

⚠️ Note: In HyperOS, when you try to install an application from an unknown source, the system may additionally request confirmation via a screen unlock password or fingerprint, even if permission is formally authorized.

If you can't find the right item, search by settings. Type "unknown" or "unknown" into the search box, and the system will redirect you to the right menu section. This is the fastest way to navigate the confusing interface of new versions of Android.

💡

Use the built-in search in the settings (a magnifier at the top of the screen), entering “unknown” or “unknown” to instantly get to the desired menu, bypassing long searches by section.

Management through the Security app

Xiaomi and Redmi have a “Security” system app (a green shield icon) that duplicates many of the Android settings features, but in a more accessible format, designed specifically to allow users to quickly check the security status of their device without diving deep into technical menus.

Run the Security app and scroll down to the Privacy or Special Permits section. You can also find the Install Unknown Apps section. The interface of this section is often more visual and shows how many apps have the appropriate permission right now.

The advantage of using this method is that the Security app also scans already installed programs for malicious code, and it is recommended to run a full check through this tool periodically, especially if you have previously used third-party installation sources.

Source of installationSecurity riskRecommended status
Google Play StoreMinimumAlways allowed.
Telegram / WhatsAppHigh-pitchedProhibited (unless necessary)
Chrome/BrowserscriticalForbidden.
Conductor (Files)Medium.Only when installed

Remember, the settings in the Security app and the system menu are synchronized, and if you change the setting in one place, you automatically change it in another, you don't have to check both if you're sure you've made the changes correctly.

Global Disconnection via ADB (for Advanced)

For users who want to completely eliminate the possibility of accidental or hidden installation of applications from any sources, there is a method of forced disabling this function through the ADB debugging bridge. This method requires connecting a smartphone to a computer and having basic knowledge of working with the command line, but gives the most reliable result.

First, you need to activate the developer mode. → About the phone and quickly press 7 times on the item "Version" MIUI» or "Version" OS». After the message “You became a developer” appears, go to Advanced Settings. → For developers and enable "Debugging by" USB».

Connect your phone to your PC and execute the following command in the terminal (the path to the ADB must be configured):

adb shell pm grant com.android.packageinstaller android.permission.INSTALL_PACKAGES

However, a more effective method is to use a command that forces a global setting to change:

adb shell settings put global installer_package_check_enabled 1

💡

Use of the ADB-Teams allow you to set tough restrictions that cannot be circumvented by the usual way through the interface, which is ideal for corporate devices or children's phones.

This method requires caution, as incorrect command entry can lead to unstable application installation system. If you are not sure of your actions, it is better to limit yourself to standard settings of the MIUI interface.

Frequent questions and problems

Why is the installation still blocked after the switch off?
This is normal system behavior. Even if permission is granted, MIUI and Google Play Protect perform additional verification of the app's signature, and if the file is labeled as dangerous or unknown, the lock will occur at the system level, regardless of the permission settings.
Can I turn off the installation for all applications at once?
In the standard interface of Android and MIUI, there is no such button “Switch off everything”; you need to manually go through the list of applications in the “Install Unknown Apps” menu and disable access for each browser and messenger separately.
Does disabling this feature affect the performance of Google Play?
No, the official Google Play Store and GetApps (Mi Store) will continue to work as usual. APK-files downloaded from the Internet or transmitted via Bluetooth.
What to do if the menu item “Install unknown applications” is gray?
If the item is inactive (gray), it could mean that the device has been set to Safe Mode or set restrictions through the Digital Well-Being app (Parental Control).
Do I need to restart my phone after changing my settings?
Usually, the changes take effect immediately. ADB-commands or changes to system files, restarting the smartphone device ensures the application of new security settings.