Security dashboard (Labs)

The Security dashboard provides a centralized view of the security status and lifecycle of your enrolled devices. You can use this dashboard to monitor OS versions, security patch levels, and end-of-life timelines for your devices, so you can quickly plan and prioritize updates for your device fleet.

You can access the Security dashboard in two ways:

• On the Dashboard, go to the Device lifecycle summary tile and click the arrow icon ( ).
• On the Knox Admin Portal navigation pane, click Dashboard > Security.

The Security dashboard shows the Device lifecycle summary, Device lifecycle information, Knox E-FOTA, and Knox Asset Intelligence sections.

Device lifecycle summary section

This section shows prioritized insights for your devices enrolled in one or more of the following services: Knox Mobile Enrollment, Knox E-FOTA, Knox Asset Intelligence.

The following information is summarized and displayed:

• Total devices: Graph showing affected device counts by security status
• Devices past security end-of-life: Tile showing the count of active devices that have received their final security update and will no longer receive patches
• Devices not up to date: Tile showing the count of active devices with outdated security patches
• Recent security patch cadence change: Tile showing the count of devices with changes to the security patch update frequency in the last three months

Clicking a tile in this section opens the corresponding page displaying detailed data. Clicking a device count on the page opens the common device list, where you can view each device’s status and the Knox cloud services it’s registered to.

Device lifecycle information table

This section displays detailed security lifecycle information for your entire fleet of devices. It shows information such as device name and model, buyer code, latest available OS version, security patch level and update cadence, and end-of-life information. This information is refreshed every 12 hours.

• All devices that are uploaded and approved in Knox cloud services are listed.
• Devices that are enrolled in only Knox Manage or Knox Guard are not included.
• The buyer code, available OS, and patch level details are shown only for devices that are enrolled in Knox Mobile Enrollment, Knox Asset Intelligence, or Knox E-FOTA.

Knox E-FOTA section

This section shows the following information about the devices enrolled in Knox E-FOTA:

• OS trend graph: Graph showing the count of devices using various OS versions.
• Latest security patch rate: Tile showing security patch adoption as the percentage of devices using its current version, previous version, and older versions.

Clicking the arrow icon ( ) in this section opens the Dashboard page in the Knox E-FOTA console. For more information, see Monitor operations.

Knox Asset Intelligence section

This section shows the following information about the devices enrolled in Knox Asset Intelligence:

• Fleet vulnerabilities: Count of active vulnerabilities by severity (Critical, High, Medium, Low).
• Fleet integrity: Count of devices with verified Samsung software, unauthorized software, and unverifiable software, classified as Good, Bad, and Unknown.

Clicking the arrow icon ( ) in this section opens the Security page in the Knox Asset Intelligence console. For more information, see Security center.