From Samsung Android OS 6 (with KNOX 2.x) Security Technical Implementation Guide
Part of PP-MDF-991000
Associated with: CCI-000366
The container must be enabled by the administrator/MDM or the container's protections will not apply to the mobile device. This will cause the mobile device's apps and data to be at significantly higher risk of compromise because they are not protected by encryption, isolation, etc.
This validation procedure is performed on both the MDM Administration Console and the Samsung KNOX for Android device. Check whether the appropriate setting is configured on the MDM Administration Console: 1. Ask the MDM administrator to display the "Android KNOX Container" rule. 2. Verify the existence of this rule. 3. Pushing this rule to the device that does not have a container installed will result in creation of the container. On the Samsung KNOX for Android device: 1. Verify the existence of the KNOX icon on the device home screen or application menu or the notification bar pull-down menu. 2. If available on the MDM agent, verify the container rule in the list of rules received by the MDM agent. If the MDM administrator cannot configure the "Android KNOX Container" rule, or if the KNOX icon is not present, or if the container rule is not found in the MDM agent rule list (MDM vendor-specific check), this is a finding.
On the MDM Administration Console, create the "Android KNOX Container" rule and push this rule to the device.
Lavender hyperlinks in small type off to the right (of CSS
class id, if you view the page source) point to
globally unique URIs for each document and item. Copy the
link location and paste anywhere you need to talk
unambiguously about these things.
You can obtain data about documents and items in other
formats. Simply provide an HTTP header Accept:
text/turtle or
Accept: application/rdf+xml.
Powered by sagemincer