Basics
The Knox Ecosystem
White Paper
- Introduction
  - The Samsung Knox Platform
  - Feature Summary
- Core Platform Security
- Network Security
  - Virtual Private Networks
  - Network Platform Analytics
- Certificate Management
- Device Management
- User Authentication
  - Biometric Authentication
- App and Data Protection
- Appendix
Samsung Knox Portal
Knox Cloud Services
- Sign in with SSO
General Knox Support
Knox Licenses
For IT admins
Knox Admin Portal
- About
- Introduction
  - Select Knox services
- Features
- Knox Remote Support
- Release notes
Knox Suite
- Introduction
- How-to videos
- Get started
- Learn more about Knox Suite
- Enterprise Edition devices
- FAQ
- KBAs
Knox Platform for Enterprise
- Introduction
- How-to videos
- Before you begin
  - Before you begin
  - User agreements for Android device management
- Get started with UEMs
- Knox Service Plugin
- Release notes
- Migrate to Android 11
  - Device management modes
  - Prepare Knox for Android 11
- FAQs
- Troubleshoot
  - Get device logs
- KBAs
Knox Mobile Enrollment
- Introduction
- Get started
- Features
- Release notes
- FAQ
- Troubleshoot
  - Get support
- KBAs
- On-Premise
Knox Configure
- Mobile
- Wearables
- Shared Device
- FAQ
- KBAs
Knox Capture
- Introduction
- How it works
- How-to videos
- IT admins: Get started
- End users: Get started
  - Getting started with Knox Capture
- Features
- Release notes
- FAQ
- KBAs
- Troubleshoot
Knox Asset Intelligence
- Introduction
- Get started
- Set up reported device data
- Features
- Troubleshoot
  - Device-side errors
  - Portal-side errors
- Real-time location service
- Release notes
- FAQ
- KBAs
Knox Manage
- Introduction
- How-to videos
- Get started
- Configure
- Monitor
- Kiosk devices
- Knox Remote Support
- Active Directory
- Microsoft Exchange
- Mobile Admin
- Appendix
- Release notes
- Features
- FAQ
- KBAs
Knox E-FOTA
- Introduction
- How-to videos
- Get started
- Features
- EMM integration
- Appendix
  - Install an app to devices through an EMM
  - EMM compatibility matrix
- Release notes
- FAQ
- KBAs
- Troubleshoot
- Knox E-FOTA On-Premises
- Legacy Knox E-FOTA products
  - Knox E-FOTA Advanced
  - Knox E-FOTA on MDM
Knox Guard
- Introduction
- How-to video
- Get started
- Using Knox Guard
- Release notes
- FAQ
- KBAs
- Support
Samsung Care+ for Business
- Introduction
- Get started
- Submit claim
- Features
- Release notes
- FAQ
- KBAs
For Knox Partners
Knox Deployment Program
Knox MSP Program

Activity log

Knox Guard administrators can periodically refer to the Activity Log to assess Knox Guard subscription events, including when they occurred, impacted Knox Guard administrators, event category, action type, and description. The activity log trending period is user configurable to either increase or decrease the length of time configuration activities are fetched from the present time. The activity log is automatically refreshed as changes or updates are made within the Knox Guard console.

For more information on Knox Guard activities and where they typically occur in the Knox Guard event flow, go to: Knox Guard status flow.

To review the Knox Guard activity log:

Select Activity log from the left-hand navigation menu.
Refer to the drop-down menu on the top, left-hand, side of the screen to set the historical trending period, from the present time, from which Knox Guard fetches and logs activities. Options include Show all (3 year period), Last 7 days, and Last 30 days. The trending time is relative to the IT admin's local time, not GMT.
Refer to the DATE column to assess when each listed activity occurred. Optionally toggle the events to display the most recent activities first or last in the column.
Use the NAME column to select and filter Knox Guard admins and resellers. The title of the column will be highlighted to display the admins and resellers that have been filtered. Select CLEAR FILTER to refresh the display back to each available category option
Use the CATEGORY column to filter listed activities by selected category. Available category filter options include Activity log, Administrators, Devices, Licenses, Policies, Resellers, and Roles. Select CLEAR FILTER to refresh the display back each available category option.
Use the EVENT column to filter actions by type. An icon appears on the right-hand side of the column when filters have been applied. Filterable event states include Accept devices, Added, Cancel completing, Complete payment, Delete devices, Disable SIM control, Downloaded CSV, Enable SIM control, Lock devices, Logged in, Logged out, Modified, PIN generated, Searched, Send payment overdue notification, Start blinking reminder, Stop blinking reminder, Unlock devices, Update lock message, Upload, and Uploaded. These actions provide a means to filter activities strategically as devices receive payment notifications, overdue reminder messages and potential device locks prior to completing their subscription payments. Select CLEAR FILTER to automatically refresh the display back all available action types.
Refer to the DESCRIPTION column to assess the devices impacted by the listed action. Descriptions cannot be filtered like names, categories and events, but a description is an important resource listing the number of devices impacted by a listed action and their IMEI/SNs. Select CLEAR FILTER to automatically refresh the display back all available action types.
The DETAILS column displays a Download link that can be optionally selected to download a CSV file log of the selected device.
If needed, select the DOWNLOAD ACTIVITY LOG AS CSV button from the top, right-hand side, of the screen to save the entire log as a CSV file. Up to 10,000 Knox Guard activity log entries can be contained within a single CSV file.