Hi Raymond,

Samsung KME is supported on Samsung Android devices running Samsung Knox 2.4 or later.

MobiControl 13.3 MR 11 (B3851) or higher does support Samsung KME enrollment of Samsung devices as Android Enterprise managed devices.

You can find the details on this process here:

https://www.soti.net/mc/help/v14.1/en/console/devices/managing/enrolling/platforms/knox/knox_me_link.html

On the KME portal, when you are configuring the profile be sure to select: “Enable this app as a Google Device Owner” if you would like to enroll the device as Android Enterprise.

Please note that format of JSON for AE is a little different from ELM variant. This IS case-sensitive, so please be sure to format is exactly as below (replace the enrollment id with a valid id).

{"enrollmentId":"AAAAAA11"}

I have sent a query to our Android team to verify if the KNOX licensing agreement is presented to the user during device setup via KME. Last time I tried this process, I did not receive any such prompt for AE setup.

For the Android+ enrollment via KME, do you have a support case for the issue? If not, can you please log a case and provide me the case number so that I can investigate this further?

Please let me know if you have any questions.

Thanks

Following up on my previous response.

The only prompt that the device user has to accept is the Samsung ELM license prompt.

ELM agent – If you decline ELM, enrollment fails.

AE agent – If you decline ELM, enrollment continues without ELM features (RC, etc..)

There should not be any other prompt other than the ELM license prompt unless there are any conditions specified in your KME portal.

Please let me know if any more information is required.

ELM license prompt is the one I am talking about.  In this context, the ELM license check is actually for Samsung server to process if any free or paid Samsung KNOX features has been purchased for the device concerned.

As I said, Samsung Hong Kong staff confirmed with me that other MDM/EMM solutions do not have this prompt to device user in the whole process to device enrollment after factory reset.  How come Soti MobiControl need it and other vendors's software does not need it? 

Hello Raymond, 

ELM  is a must on anything that uses Samsung specific APIs that is not a platform signed agent (we don't do platform signed agents for Samsung anymore). As it stands today, to use Samsung APIs, the device user MUST accept ELM prompt to be able to access the full feature set. As mentioned earlier, this is hard requirement for the ELM agent but a soft requirement for the Android Enterprise agent, though we do ask to accept the license by default.

We have had multiple confirmations from Samsung HQ that the license is a MUST and that there is no way around it. We will reach out to Samsung once again to clarify what Samsung Hong Kong is referring to and try to update you as soon as we can.

Thank you. 

Hi Mohammed,

Thanks for your reply.    If what you said is true, would it be possible that the other EMM vendor software that Samsung Hong Kong mentioned about actually had a custom Samsung ELM Configuration with an on-premise Activiation Server (a similar option in MobiControl All-Platforms->Servers Tab-> Global Settings->Samsung ELM Configuration) ?  I asked Soti and Samsung about this on-premise Activation Server set-up more than a year ago, but so far got no positive feedbacks to get one set up on our demo MobiControl servers, thus I cannot try out KME enrollment with this configuration to see if the prompt on the device becomes skipped.   Maybe your side have server with such on-premise ELM license Activation Server, and can confirm it. 

If the result is positive, could you please check with Samsung whether there is any geographical limitation such that we cannot set it up in Hong Kong, or if the On-Premises activation server software binary is already obsolete for any new implementation now?   If these are not the case,  could you get me the installation binary and procedure and give me the relevant Samsung contact, so that I can chase after Samsung Hong Kong team responsible for all KNOX/ELM related stuff to get me the  custom license key.   We can then do the test and hopefully solve the problem and get similar result as other MDM/EMM vendors' software mentioned by Samsung Hong Kong.

Your help is very much appreciated.