How does TinyMDM, a Samsung approved partner, integrate the Knox API to take mobile device management to the next level?

3 minutes

TinyMDM has been a Samsung supported EMM partner since 2020. Thanks to this partnership, the mobile device management software has the ability to use the Knox SDK and thus be able to develop many features specific to Samsung devices.

TinyMDM offers remote control on many manufacturer brands, and especially on Samsung devices. In fact, all Samsung branded devices are compatible with remote control and since the software uses the Samsung API to work, there is no need to install any plugins for remote control beforehand, which leads to a time-saving configuration.

KME (Samsung Knox Manage Enrollment) enrollment is a simplified enrollment process, and dedicated to Samsung devices. Simply purchase the devices from an authorized reseller who will create the KME account for their customer and directly link the devices to it. Then the customer just needs to follow the steps in this tutorial.

In TinyMDM’s policies, it’s possible to push the installation of certain applications initially not visible on the device, such as native apps. But via the Knox API, it is also possible on Samsung smartphones or tablets, to prohibit the use of certain specific applications or activities. For example, on a device in open kiosk mode, it is possible to disallow access to the Settings application, so that the user can use the widgets but cannot click on the settings icon and change the configuration.

Another possible example: web applications work with Chrome on TinyMDM. If you want to make sure that the user only has access to this web application but not to the whole web browser, you can come and disallow its package name from the policy. Click on this tutorial to learn more.

TinyMDM is based on SKD Knox to allow you to remotely manage the language of Samsung mobile devices. A customer with devices scattered across multiple regions of the world will be able to change the language of Samsungs, for example, depending on the policy they are in.

From the policies of the MDM platform, it is possible to block the factory reset visible in the settings of the devices. On the other hand, on Samsung devices, for greater security, the factory reset can also be blocked via the physical buttons (the hard reset).

On Samsung devices in Android 9 or lower, it is possible to block certain visible menus in the settings, such as the Connections menu or the typical “Sound, Notifications, Security, Accounts and Backup” menus, so that end users cannot change the settings for Wifi, Bluetooth, mobile data or airplane mode. In the opposite direction, it is possible on 100% managed devices, to only allow access to the Connections menu and restrict all other visible menus. Click here to learn more.

In all cases, these settings can be modified from the administration console even for devices from other manufacturers, but access to the various menus cannot be restricted.