- *BASICS*
- The Knox Ecosystem
- Samsung Knox Portal
- Knox Cloud Services
- General Knox Support
- Knox Licenses
- *FOR IT ADMINS*
- Knox Suite
- Knox Platform for Enterprise
- Introduction
- White paper
- Before you begin
- Get started with UEMs
- Introduction
- Blackberry UEM
- IBM MaaS360
- Microsoft Intune
- MobileIron Cloud
- MobileIron Core
- Samsung Knox Manage
- SOTI MobiControl
- VMware Workspace ONE UEM
- Knox Service Plugin
- Release notes
- Migrate to Android 11
- FAQs
- Troubleshoot
- KBAs
- Knox Mobile Enrollment
- Introduction
- Get started
- Features
- Register resellers
- Add an admin
- Create profiles
- Google device owner support
- MDM compatibility matrices
- Device users
- Activity log
- Enroll and unenroll devices
- Configure devices
- Provide KME feedback
- Use the Knox Deployment App (KDA)
- Recover Google FRP locked devices using KME
- Role-based access control (RBAC)
- Release notes
- FAQs
- Troubleshoot
- KBAs
- Knox Configure
- Mobile
- Wearables
- Shared Device
- Knox Capture
- Introduction
- How it works
- How-to videos
- IT admins: Get started
- Getting started with Knox Capture
- Step 1: Launch Knox Capture
- Step 2: Create a scanning profile
- Step 3: Select apps and activities
- Step 4: Configure the scanner
- Step 5: Set keystroke output rules
- Step 6: Test apps in your configuration
- Step 7: Share your configuration
- Step 8: Deploy Knox Capture in Managed mode
- End users: Get started
- Features
- Release notes
- FAQs
- Troubleshoot
- Knox Manage
- Introduction
- How-to videos
- Get started
- Configure
- Licenses
- Organization
- Users
- Sync user information
- Groups
- Devices
- Content
- Applications
- Profile
- Knox E-FOTA
- Certificates
- Advanced settings
- Monitor
- Kiosk devices
- Remote Support
- Active Directory
- Microsoft Exchange
- Mobile Admin
- Appendix
- Release notes
- FAQs
- KBAs
- Knox E-FOTA
- Introduction
- White paper
- Knox E-FOTA One
- Introduction
- How-to videos
- Get started
- Features
- EMM integration
- Appendix
- Release notes
- FAQs
- Troubleshoot
- KBAs
- Migrate from Knox E-FOTA Advanced to Knox E-FOTA One
- Knox E-FOTA Advanced
- Knox E-FOTA on MDM
- Samsung Care+ for Business
- *FOR RESELLERS*
- Knox Deployment Program
- *FOR MANAGED SERVICE PROVIDERS*
- Knox MSP Program
iOS
The available device commands vary depending on device manage type.
Device
Device command |
Description |
Apply Latest Profiles |
Sends the latest profile and application information to the device and controls the device with the profile and information. |
Lock Device |
Blocks some functions of the device without locking the device. |
Unlock Device |
Unlocks a device. |
Factory Reset |
Performs factory reset and changes the device status to Unenrolled. |
Reset Screen Password |
Resets the device’s screen lock password. |
Initialize Blocked Information (Supervised) |
Initializes the block settings of the device. NOTE— Only iOS Supervised devices are supported.
|
Application
Device command |
Description |
Install |
Installs applications on a device. In the “Request Command” window, select an application to be installed. NOTE— The Application installation blocklist/allowlist policies take a higher priority than device commands.
|
Uninstall App |
Deletes applications from a device. In the “Request Command” window, select an application to be uninstalled. NOTE— The Application uninstallation prevention list setting policy takes a higher priority than device commands.
|
Apply Latest internal App Information |
Sends the latest internal application information and updates the device according to the information. |
Knox Manage
Device command |
Description |
Push Notification |
Sends an emergency message to the device. The message icon is shown on the status bar of the device. In the “Push Notification” window, enter the title and content of the message. |
Unenroll Device |
Unenrolls a selected device on the device list. |
Update User Information |
Updates the device user information such as the user activation status/username/user settings (Secure Browser website URL information, bookmark information) and license information. If the user is logged out from the enrolled device, you can send this device command to enable the user to log in to Knox Manage automatically. |
Lock Screen of Knox Manage agent |
Locks the Knox Manage agent. When the application is locked, the users have to enter the screen lock password which was configured during installation. If a user forgets the password of Knox Manage agent screen lock, you can send the Delete Account command and make the user logged out from the Knox Manage agent. Then, the user can set the password again upon login. |
Unlock Knox Manage agent |
Unlocks the Knox Manage agent. |
Delete Account |
Deletes the account registered in the Knox Manage agent. |
Collect Audit Log |
Collects the Knox Manage audit logs of the device. When the log size exceeds the maximum size, logs are automatically sent to the server, but the log file may be lost. For more detailed information, see Viewing audits. |
Collect Device Log |
Collects the logs of devices. |
Collect Diagnosis Information |
Collects a device log to diagnose the cause of device lock. NOTE—Personally identifiable or sensitive information will be data masked.
|
Sync App Auto-removal Property (When service is deactivated) |
Syncs the application auto-deletion property when managed applications are deactivated if the value of Delete app during Unenrollment process has changed in the server configuration. |
Device Info.
Device command |
Description |
Collect current location |
Shows the current location of the device. To view the location of a device after sending a device command, navigate to Device, click the checkbox for the device, and then click Check Location. |
Sync Device Information |
Updates the inventory and application information on the device. To view the updated information after sending the device command, navigate to Device, click a device name or tag, and view the information on the “Device Detail” page. NOTE— For iOS devices, only the hardware status is updated.
|
Sync Installed App List |
Updates the information of installed applications. For iOS devices, you can also request to delete application feedback when sending the device command. To view the list of installed applications after sending a device command, navigate to Device, click a device name or tag, and click the “Application” tab. |
Check Connection Status |
Checks the service connection status of the device. To check the status of the device after sending the device command, navigate to Device, click a device name or tag, click the “Security” tab, and view the connection status below the device name. For information on the different connection statuses, see Device connection statuses. |
Collect Profile ID |
Collects the ID of the profile applied to the device. If the device has been enrolled, then the ID is automatically collected from the device’s inventory information without sending the device command. |