Hi all,
Just started using activesync towards Exchange server and had to enable the phone lock to get it working (due to Exchange server security policy).
Activesync works great but overall phone usability has decreased considerably when I have to type a 6 digit PIN code everytime I want to use the phone for calls, check calender, run appl etc.
Is there any way to
1) Limit need for password input to only reading mails using Outlook
2) Make sure I only have to type PIN if I havent used the phone for an extended period? Right now I need to type PIN everytime the phone has been in standby..(despite 15 min timeout setting in security lock settings)
3) Cheat phone to accept 3 or 4 PIN code instead of the default 6 PIN.
4) Bypass exchange server policy and remove need for PIN completely (keeping activesync working of course)
Any advice will be highly appreciated!
Best regards
Jens
Related
When I set up an exchange account the phone ask me to set a password. Now every time I turn on my phone it or wake it up it asks me to enter the password. How do I remove the password???
If you were forced to set a password when you set up exchange activesync then the password is enforced, you can't remove the need for a password as long as you sync to that server.
The IT policy is set by whoever administers the server for all connected devices, most companies would use that setting for example to protect their data.
Who is hosting your exchange? Is it a work account?
It's 1&1. I really wish i knew that before i bought. Everytime I wake up the phone I have to put in a darn code. Is there any way around this? Very annoying.
Only way around it is to remove the exchange connection.
It's a server-wide policy - to cope for some users needing passwords, maybe even their own staff it will have been set up.
I'd stick with it personally, the device is more secure when lost with it enabled... I carry a wizard and Blackberry - both need password entry but I'm used to it
This week end I tried to sync my oulook mailbox and it asked me to accept new security policy.
It was in fact my company that upgraded to latest Outlook mail server with push functionality.
I was very happy and push is working fine.
But now I also have this annoying Pin code to enter every hour.
Also even when I entered the code and I am free to use my phone during one hour, I noticed that each time I turn it on I have a blank screen for 1 seconde before it loads the today page slowly.
This password feature is not nice at all and I really want to get rid of it.
I am pretty sure we will be able to find some regkey to unlock this stupid security policy like in HKLM\security\Policies\Policies.
It has to be a user choice in the end.
Do you know if I stop syncing with my server if i can remove it?
no, as I've said twice already, if you're using exchange activesync then this policy is enforced.
It's not user choice, if you're syncing your device with your employers equpment it's their data, they're legally entitled to protect it. If you're syncing with a third party server then the device will do as its told... the server is considered authorative - the same is true of Blackberry.
If you can find a way to alter the policy the checksum of your settings will differ to that stored on exchange, when the device next syncs it will see the change in policy and enforce the correct settings, turning the security back on.
Seriously guys, if you want exchange activesync then live with the policy , if you don't then disable the server connection.
remove the activesync service then yes you should be able to edit again to disable.
of course the thing mentioned above is not a solution...
i'm hal-way there and spoke with the rom makers to find a complete solution...this one is just temparary...
SeanH said:
I have been using a registry hack everyday to prevent my WM5 device from locking itself every 30 minutes. At around 7:00pm the company I work for forces a policy to my device using push email. At that time I open a registry editor and modify \hklm\security\policies\policies\00001023 from 0 to 1. That prevents the unit from asking for a password for 24 hours.
Click to expand...
Click to collapse
good luck
remen said:
of course the thing mentioned above is not a solution...
i'm hal-way there and spoke with the rom makers to find a complete solution...this one is just temparary...
good luck
Click to expand...
Click to collapse
I've decided I'm not going to be able to help on this one. It's your company's choice to enforce that security policy and not mine to help you get around it. I'm not being rude, I'm just not able to put time into research to do that at this moment.
Good luck.
Ok this may sound really dumb but I was messing with my MDA last night and set up Exchange Activesync to sync with my work email.
Apparently the email admins (not known to me) enabled the device password policy. After I deleted my exchange activesync settings, the password setting is still there!
Yes, I already tried going into the "lock/password" setting option in the control panel but since the security feature was enabled through the Exchange policy, those options to remove them are grayed out!
Does anyone know of a way to remove this? I'm assuming there MUST be some registry settings I can edit??
I tried playing around with the registry but I'm not that familar with WM 5 registry so I didn't want to mess it up further.
Any help would be GREATLY appreciated!
Device Reset? That's what I did with my MotoQ. I think it is a registry setting though.
I was not able to find info anywhere on MS site how to reverse the darn thing. Even when I removed the policy from the Exchange system testing security settings, it would still prompt for the password.
Let us know.
I have the exact same problem. My device now locks after 1 minute, extremely annoying.
Does anybody have an answer to this problem?
Thanks in advance.
Well... what about talking to the exchange admin and find out the password?
I think you should ask to your exchange admin to remove security policies for your account and resync it !
Have you ever considered WHY there is a password policy enforced?
Maybe to secure the device when left unattended?
And there MUST be a policy enforced to enable a pushed remote wipe, in case you lose the darn thing.
In that case a password policy is the most simple way to do this.
I'm an Exchange Admin myself, and I also enforce a password policy.
So I guess they wont help you with removing.
And even when you remove it via the registry, and you sync it again directly with the server, the policy is enforced again.
So you end up with a device you cannot sync again with your work email.
But a lock policy of 1 minute is harassing somebody, it must be a mistake.
In that case you should contact the exchange admins.
It turned out to be a misclick by myself during the setup. Because I changed the password of my exchange account, I was asked if I wanted a password on my mobile device (according to the exchange admin). Unfortunately I clicked 'yes' en 'next' to fast, leaving me with a device that locked after a minute. Problem was 'solved' by a hard reset.
I suffer from this a whole day even after asking my Exchange admin to turn of that security policy on the server.
Finally I reach a clean solution:
go HKLM\controlpanel\password
turn Dword:HintCounter from 0 to 1
going back to setting-password, now the grayed options return to black.
huangyz said:
I suffer from this a whole day even after asking my Exchange admin to turn of that security policy on the server.
Finally I reach a clean solution:
go HKLM\controlpanel\password
turn Dword:HintCounter from 0 to 1
going back to setting-password, now the grayed options return to black.
Click to expand...
Click to collapse
sadly enough, this doen't work for me...
i also got the pushed policy from the microsoft exchange server so i NEED TO HAVE the $%^&$ password, onterwise when i'm configuring the pushmail it won't accept.
if it was just entering the password it would be okay but it seems that when i use the ''password lock fuction'' and push it on stand-by and back on again the today screen quickly show's to turn black again and sort of reload the page (this hapens in about one second).
and when i don't use the ''password lock fuction'' this doen't happen, so it's clearly the ''lock fuction'' that's causing it.
now how can I disable the password?? i know that normaly you can do this by disabeling this in the menu, but it's turned gray cause of the pushed policy i gues...
and i got the wake-up problem too, but that's also solved when the password is removed... :S
for the rest i can only say, REALY GOOD WORK, and that count's for al,most everything here, i'm really satisfied with my wm6 busniess edition, it rock's!!accept for the thing mentioned above...who can help me out??is there another register tweak to disable the lock?? thanks in advandce and excuse me for my bad english
grtzz
Remen (from the netherlands)
I currently use my work exchange server to hold all my emails and contacts...but my sever requires that i have a password on my mogul.
Just wondering if anybody knows how to get around this and disable it? I hate having to type in a password every 15 minutes whenever i want to look at my phone...such a pain! I would much rather just have it whenever the phone starts...or maybe even like every 2 hours or so...not 15 minutes!!
Please helppppp!!!!
Thanks!
I'm attached to a Zimbra server for email/contacts. I just checked it's user options and did not see an option for that.
I do speculate that it's an option on the Exchange though. It's been a few years since I managed one. You'd probably be in good shape checking with your admin about this...
what I do
TripFlex said:
I currently use my work exchange server to hold all my emails and contacts...but my sever requires that i have a password on my mogul.
Just wondering if anybody knows how to get around this and disable it? I hate having to type in a password every 15 minutes whenever i want to look at my phone...such a pain! I would much rather just have it whenever the phone starts...or maybe even like every 2 hours or so...not 15 minutes!!
Please helppppp!!!!
Thanks!
Click to expand...
Click to collapse
I have my password saved under the phones activesync settings.
He's talking about the hardware security policies pushed to the handset by Exchange Server.
Yes - there are ways to disable and alter the effective policies on your handsets. However, they are in place because you are accessing your company server and any sensitive information on your phone should be protected from loss. (for this reason, I always strongly dissuede people from using personal handsets for company/government/official business) As a piece of IT/Communications gear, those phones are subject to the same security requirements enforced across the entire organization.
If you must be the weak link in your company's security, you can find hints to open a vulnerability here: http://forum.ppcgeeks.com/showthread.php?t=43428
I have just started using WindowsMobile. I have a Treo Pro with WM 6.1. I have connected it to my 2007 server with Active Sync. However, I did not understand the PIN for the device and I put in a password that is just too long. How do I reset or change my PIN so I do not have to type so many characters each time I unlock my device?
Thanks
One thing I did was disable the requirement of a PIN when connected to my exchange server. Our security policy required a 4 digit pin, which became a pain.
Here is some information on how to tweak these settings via a registry editor...
http://khason.net/blog/how-to-disable-exchange-security-policy-for-windows-mobile-devices/
Okay, my HD2 yesterday forgot my unlock passcode, I have not installed any version of sype, and running 1.66 WWE stock Rom. My Exchange Server security policies forces a passcode.
What i have found (tested) is that an option in BsB Tweaks is causing the problem.
The option that is causing this (or at least for me) is 'Owner Information - show or hide owner in settings'
When enabled, with the show notes, your Owner information and notes are displayed when you wake the phone (before slide to unlock) I wanted this option because it gives you a slightly better chance of recovering your phone if it gets lost.
It works well initially, then for some reason it fails to show, restart the phone and BANG, your passcode wont work!! I have experimented this and it happens every time.
Thought I'd let you all know my findings, and hopefully this bug can be ironed out.
regards
Paul
I've tested it some more today, and I'm pretty sure that it is the Owner info. Going to leave it off now, but would definitely want this feature fixed As i said before it does give me a slightly better chance in getting it back if it gets lost!
Have you tried using the Recovery Password from the Outlook Web Access for your exchange server?
It's not the Exchange password that gets forgotten, it the unlock code for the phone!!! You just cant unlock the phone, hard re-set is the only option!!
Its a know problem for some people that install sype! Same thing your passcode just will not work
Paul Boy said:
My Exchange Server security policies forces a passcode.
Click to expand...
Click to collapse
Microsoft said:
You can use the EMC, the Shell, or Microsoft Office Outlook Web App to recover a device password.
You can require a device password through Microsoft Exchange ActiveSync policies. A user can configure a device password even if your Exchange ActiveSync policies don't require one. If users forget their password, you can obtain a recovery password using the EMC or the Shell. The recovery password unlocks the device and lets the user create a new password. Users can also recover their device passwords by using Outlook Web App.
Click to expand...
Click to collapse
Is what I think you are looking for.