What is Samsung Knox?

Samsung Knox is a comprehensive set of security features and enhancements, designed for personal and enterprise-specific purposes. The purpose of Samsung Knox is to address security concerns in the open source Android platform. Click here for the list of devices which support Samsung Knox. Knox capabilities range from onboarding, provisioning, and support for containerization; Knox capabilities are available right from unboxing the device.

From a business perspective, the recommended best practice is to leverage a mobile device management solution to put these capabilities to the best of use. These capabilities can be categorized into two parts.

Knox Mobile Enrollment

Knox Mobile Enrollment is an out-of-the-box enrollment method which ensures compatible devices get enrolled with MDM on first boot-up, right after unboxing the devices. The complete enrollment process is automated and requires no user intervention - similar to Google's Zero Touch Enrollment for Android devices. 

For organizations performing large scale enterprise device roll outs, manually enrolling device after device is a cumbersome task. Knox Mobile Enrollment lets you enroll devices in bulk and also skip initial setup steps, ensuring users can begin using the device without having to configure the initial setup steps.

Another benefit for the devices enrolled using Knox Mobile Enrollment is mandatory management. In case users try to hard reset their devices, management will still be retained in them. This holds good even for misplaced or stolen devices; ensuring unauthorized personnel cannot use them. MDM also provides other proactive and reactive methods to secure misplaced or stolen devices

For the complete step-by-step procedure and prerequisites to perform Knox Mobile Enrollment using MDM, refer to our help document.

Knox Container using Mobile Device Manager Plus

Knox Management in Mobile Device Manager Plus (MDM) provides precise control of corporate data accessed by employees along with flexible mobile device management operations, without compromising on data security. By deploying Samsung Knox compatible devices using MDM, IT Administrators can

  • Activate Knox containers in employees' personal devices automatically.
  • Configure policies to secure corporate data inside the container.
  • Secure the container with robust protection.
  • Deploy required applications in the container.

With MDM, all these operations can be performed from a unified console. However, the only prerequisite to create a Knox container is to purchase Knox Workspace Licenses by creating a Knox Portal Account. Learn more here.

Knox containers ensure sensitive business data and user's personal data are demarcated, enabling the IT admin to have complete control over the work profile while having zero control over the user's personal profile.

With regards to supported policies for the Knox container, MDM lets you define parameters to secure the container using a passcode; configure E-mailExchange ActiveSync accountsimpose restrictions to disable device level features and functionalities.

For organizations using custom enterprise apps for their specific needs, MDM lets you add and distribute them into devices equipped with Knox containers. Availability of custom apps for employees regardless of using personal devices enhances productivity, with zero compromise towards security.