What happens to the Knox Workspace container if the device is rooted?

Article ID: 115012597388
January 18, 2018 18:01

In Samsung Knox-enabled devices, there is a security mechanism that monitors during the device boot and in runtime if the device is ever rooted, and leaves an undeletable mark on a rooted device. Using this information, Knox Workspace determines if it’s safe to install or maintain the container on the device.

If an IT admin tries to create Knox Workspace on a rooted device, installation is denied. Unauthorized firmware on the device implies that there can be an unknown security hole, putting corporate data in the container at risk. Therefore, Knox Workspace is not installed unless integrity of the device is proven.

Likewise, even if Knox Workspace is already installed and activated, if the device finds out it’s rooted, it permanently locks the container as a possible security threat.

Was this article helpful?

Sorry about that

Why wasn't this helpful? (check all that apply)

Couldn't find what I was looking for

Information confusing or unclear

Instructions didn't work

Comments

Great!

Thanks for taking the time to give us some feedback.

Additional Support

Enroll or sign in to submit support tickets

Looking for other product help?

ARTICLES IN THIS SECTION