Database Users

Select device administrators???

I am curios what this is? Under location and security there is a tab called select device administrators. When I click on it it shows email and a box for me to check. What does this do? This is only on 2.2 thanks.

Im wondering the same thing...help?
Sent from my SPH-D700 using XDA App

I have seen this on my wife's phone running CM6.1. She has her work e-mail going to the phone, but part of their requirements to allow employees have the mail on their phone is that their IT dept has to be a phone admin so they can wipe sensitive data remotely in case the is lost or stolen.

Yeah I read some other threads about it when I googles it but I didn't understand what they were saying. The only thing I got was it adds security to the app thru wave secure. Don't know if I'm completely right. I checked the email app that was under it and activated it but I didn't notice anything.

[MOD] Stock Mail.apk with the exchange policy removed

First off I take no credit for this at all. All credit goes to Rsotbiemrptson who is a Jedi master for creating this after many have tried and failed.
What you have here is a flashable crack to the HTC Mail.apk that will bypass any and all security administrators that may be otherwise forced onto your device when syncing to an exchange server.
To install:
1. You must remove all mail accounts that you have set up in the Mail app.
2. If you have any existing security administrators present from a previous exchange sync deactivate them.
3. Set your lock time out to none under security settings.
4. Reboot into recovery and wipe Dalvik Cache
5. Flash the attached file.
As with all mods or changes to ROMS do a complete backup in recovery.
If you find this useful please send all thanks to Rsotbiemrptson for cracking this bad boy.

Has anyone tried this?

sdorn77 said:
Has anyone tried this?
Click to expand...
Click to collapse
I don't really understand the point of it. Is there something wrong with Exchange on the Tbolt? Mine works fine.

Shiftyshadee said:
I don't really understand the point of it. Is there something wrong with Exchange on the Tbolt? Mine works fine.
Click to expand...
Click to collapse
This is for people who want to use their Exchange account on their Tbolt, but DON'T want to give their Exchange admin the ability to enforce security policies on their phone (like having to enter a PIN every time you unlock the screen). Sounds like your Exchange admin doesn't implement any of those policies, so you don't need this.

Is this something that was implemented in newer versions of Exchange? I think my company uses 2007 still. Might be why I haven't seen this.

i managed to get my gmail, hotmail an windjammercable mail setup though exchange on my thunderbolt, but i kept getting sync errors where it would try to sync all three emails like every 5 seconds when the phone was operating in peak time. My battery went from like 100 to like 75 in less than 20 minutes So i had to just delete all the email setting i changed an go back to what i had before.
Now, if install your mail akp will this stop the sync errors?

Shiftyshadee said:
Is this something that was implemented in newer versions of Exchange? I think my company uses 2007 still. Might be why I haven't seen this.
Click to expand...
Click to collapse
It's been around since at least the 2003 version but it's all optional settings, your admin may just not have them enabled. Mine doesn't.

Jacquestrapp said:
It's been around since at least the 2003 version but it's all optional settings, your admin may just not have them enabled. Mine doesn't.
Click to expand...
Click to collapse
Gotcha. Thanks for clearing that up for me

This absolutely works on all DAS BAMF roms but should work on any ROM including stock. You only need this if you have exchange policies pushed to your phone by your company. If you don't know what this is you prob don't need it.
I do not know if it will fix the afore mentioned sync errors but I would doubt it.

Here's a new question. When I had CM7 on my Incredible, Exchange wanted to setup device admin rights. Now on my Tbolt with Sense I don't get asked. Any idea why?

madroix said:
This absolutely works on all DAS BAMF roms but should work on any ROM including stock. You only need this if you have exchange policies pushed to your phone by your company. If you don't know what this is you prob don't need it.
I do not know if it will fix the afore mentioned sync errors but I would doubt it.
Click to expand...
Click to collapse
I have installed this on DAS BAMF remix v1.4 and it does work so far. I was able to remove the PIN lock and use a pattern lock, which was not permitted before. Also, I didn't get the exchange security policy notice when I added my exchange account. Syncing appears to be working properly as well so far.

The mod is quite honestly ridiculous. Whats the point of trying to have security setup and protect possible sensitive information, when you don't want an Admin to enforce security rights.
This 100% defeats the purpose that was set in place by Exchange for good reason's. I sure hope everyone understands the SERIOUS consequences of what could happen by flashing this and possibly leak sensitive data into the wrong hands.

^^ it's a very good point. One of the problems with AS and lock screens is that with the default client and iPhones you have to pin to unlock even the phone. Nothing to do with email, just the darn phone. So everyone hates it. I use Touchdown which only requires a pin if you go to check email. But it's $20. Anyway, be careful with hacks that bypass security in a workplace. It could be cause for termination.

I love my phone, I've loved ALL my devices... Yes, I use it for work with MS Exchange email (MS Consultant), and yes the pin/password policies are annoying.
But I'm not about to risk my job over some "hassle" of 3 seconds to enter a pin. Aren't our email Administrators able to see we bypassed this or no?

oc3rulz said:
The mod is quite honestly ridiculous. Whats the point of trying to have security setup and protect possible sensitive information, when you don't want an Admin to enforce security rights.
This 100% defeats the purpose that was set in place by Exchange for good reason's. I sure hope everyone understands the SERIOUS consequences of what could happen by flashing this and possibly leak sensitive data into the wrong hands.
Click to expand...
Click to collapse
To be honest, if someone wanted my data or emails a stupid 4 digit pin is not going to stop them. There are many ways in getting a persons email off of there phone without even unlocking it. This seems like it is for those small companies who's admins are security freaks and its really not needed. Granted, I am sure apple would not be happy if an employee used this app or an android phone lol
Sent from my ADR6400L using XDA Premium App

It is important to keep sensitive data secure. I think a properly set up pattern lock is as good as a 4 digit PIN. I use lookout to be able to remotely wipe if needed.

THANK YOU SO MUCH! Hats off to the dev.

Do I have to remove gmail accounts too, or just the active sync exchange accounts?
Sent from my ADR6400L using XDA App

chriskader said:
To be honest, if someone wanted my data or emails a stupid 4 digit pin is not going to stop them. There are many ways in getting a persons email off of there phone without even unlocking it. This seems like it is for those small companies who's admins are security freaks and its really not needed. Granted, I am sure apple would not be happy if an employee used this app or an android phone lol
Sent from my ADR6400L using XDA Premium App
Click to expand...
Click to collapse
Let them get in hacking your password/pin, you won't be held responsible. However if you have the phone pin/password disabled and they realize this you will be terminated. They will be able to see that you are bypassing security measures, and you could have lawsuit on your hands as well.
Please dont think that I am bashing the dev, I'm simply trying to let people know that they very well could and most likely lose their job and have possible legal action taken against them for using this. Cellphones are such a volatile thing anyhow, but giving them an easier way in is not a good idea, especially not while breaking company policy.

oc3rulz said:
Let them get in hacking your password/pin, you won't be held responsible. However if you have the phone pin/password disabled and they realize this you will be terminated. They will be able to see that you are bypassing security measures, and you could have lawsuit on your hands as well.
Please dont think that I am bashing the dev, I'm simply trying to let people know that they very well could and most likely lose their job and have possible legal action taken against them for using this. Cellphones are such a volatile thing anyhow, but giving them an easier way in is not a good idea, especially not while breaking company policy.
Click to expand...
Click to collapse
Like I said, they don't even Ned to unlock your phone e to read the emails on of. Google it.
Sent from my ADR6400L using XDA Premium App

[Q] Encrypted Nexus 10. Decrypt worked twice and no longer accepts pin.

I have a Nexus 10. I wanted to add my corporate email to the device. When I did I was told I had to add a pin number and encrypt the device. I performed both of these actions no problem. I rebooted the device twice during all of this and was able to enter my pin successfully and use the device.
Fast forward to this afternoon. After using the device for awhile I determined that the slowness caused by the encryption was no longer worth having my corporate account on the device.
I go into Settings and delete the corporate account. I tried to go into Security to remove the pin and encryption but both were greyed out. I thought all I had to do was reboot the device and I would be able to disable both.
I rebooted and now I'm stuck at the "Type password to decrypt storage". My pin no longer works on this screen. It keeps giving me a response of "Try again."
Does anyone know what's going on or how I can fix this?

I'm guessing the security is messed up (somehow, don't know how) from removing the corporate account.
But, just for future reference, the only way to remove encryption from an Android device is to factory reset it. It's not as simple as just going into security and removing encryption.
Sent from my Nexus 7 using xda premium

squshy 7 said:
I'm guessing the security is messed up (somehow, don't know how) from removing the corporate account.
But, just for future reference, the only way to remove encryption from an Android device is to factory reset it. It's not as simple as just going into security and removing encryption.
Sent from my Nexus 7 using xda premium
Click to expand...
Click to collapse
I heard and seen otherwise. I was shown, by someone who has a Nexus 10, that you can remove the encryption as long as you remove the account and removed the device from the OWA site.
Unfortunately, that person is no longer available to me to help.
So basically I'm screwed and all of my information on the device is gone. No one else has any thoughts?

Well, your data is probably lost, but you can easily factory reset it from recovery.

Skullpuck said:
I heard and seen otherwise. I was shown, by someone who has a Nexus 10, that you can remove the encryption as long as you remove the account and removed the device from the OWA site.
Unfortunately, that person is no longer available to me to help.
So basically I'm screwed and all of my information on the device is gone. No one else has any thoughts?
Click to expand...
Click to collapse
I think you can skip the password via adb. http://forum.xda-developers.com/showthread.php?t=1800799

lKBZl said:
I think you can skip the password via adb. http://forum.xda-developers.com/showthread.php?t=1800799
Click to expand...
Click to collapse
Unless I misread, or misunderstood it looks like that'll only work for *pattern* unlock not pin.
Edit: Nevermind, it looks like this post in that thread might have your answer:
http://forum.xda-developers.com/showpost.php?p=30285850&postcount=12
To the OP, if it's a simple pin, a brute force script or program could make short work of it in minutes (or hours at most; depending on length of password).

Skullpuck said:
I heard and seen otherwise. I was shown, by someone who has a Nexus 10, that you can remove the encryption as long as you remove the account and removed the device from the OWA site.
Unfortunately, that person is no longer available to me to help.
So basically I'm screwed and all of my information on the device is gone. No one else has any thoughts?
Click to expand...
Click to collapse
You saw a way to remove certificates for your corporate email account, not remove encryption from your device.
There is only one way to remove device encryption, and that is by factory reset, by design. It wouldn't be very secure otherwise.

Skullpuck said:
I heard and seen otherwise. I was shown, by someone who has a Nexus 10, that you can remove the encryption as long as you remove the account and removed the device from the OWA site.
Unfortunately, that person is no longer available to me to help.
So basically I'm screwed and all of my information on the device is gone. No one else has any thoughts?
Click to expand...
Click to collapse
Sorry, you heard wrong, or you were listening to a fruitcake. By definition you cannot "remove" encryption. It changes the whole file.
Think of it like this. I just scrambled an egg. Then I'm like "oh no! I don't like scrambled eggs! Can someone help me remove the scramble?"
It's not that easy. Sure, there is brute force, if your apps were THAT important it might be worth it to try.
But the short solution: factory reset your data, or give it the pin it wants.
Swiped from my Nexus 10 using xda-developers app

In the future, NEVER use the corporate account system built into iphone / android, this let's your company apply security policies that can wipe your device remotely, and your encryption junk. Use something like Touchdown app which still syncs your contacts, emails, and calendar into your device for any other app to use, but the security policies only get applied to Touchdown. I know this from experience when my former company's IT department "accidentally" wiped everybody's devices messing around in Exchange. "Whoops."

Bypass Exchange Security?

Anyone figured out how to bypass Exchange security on the G2?
Thanks!

Soundchasr said:
Anyone figured out how to bypass Exchange security on the G2?
Thanks!
Click to expand...
Click to collapse
Would like to know this too. In the meantime search for an xposed mod. Notification mod. This one allows you to use the notification pulldown.
Helps a lot.
Sent from my LG-D802 using Tapatalk

Anyone? Please?

Soundchasr said:
Anyone figured out how to bypass Exchange security on the G2?
Thanks!
Click to expand...
Click to collapse
Did you try new Google KitKat email app? Make sure that you install both Email and Exchange 2 email apk.
http://androidcommunity.com/nexus-5...s-android-4-4-google-apps-downloads-20131101/

the easy answer is to use enhanced email, can be found in Google Play. I am using that myself

alex72 said:
Did you try new Google KitKat email app? Make sure that you install both Email and Exchange 2 email apk.
http://androidcommunity.com/nexus-5...s-android-4-4-google-apps-downloads-20131101/
Click to expand...
Click to collapse
I think the OP like me wants to bypass the security set by the rules, not the app itself.
henrylar said:
the easy answer is to use enhanced email, can be found in Google Play. I am using that myself
Click to expand...
Click to collapse
Best most money on an app spent!.... NOT...DOESN'T WORK IN MY CASE...
And you know 15 minutes are not enough to even try it due to the options and testing and hoping. Bought it long ago. In my case it didn't work...
Company has its own app. And another 2 apps checking if the app is admin etc.
Only thing that could be done is either to input the pass automatically when I unlock the phone. Maybe something via xposed. And add a second screen unlock option.
Somewhat like the iPhone jailbreak has it...loved the security bypass plus android pattern unlock....
Sent from my LG-D802 using Tapatalk

Can someone try this? Saw it in company forums. But might be completely unrelated https://play.google.com/store/apps/details?id=ru.chunky.AutoKeystore&hl=en

I use touchdown so the policy is applied to the app and not the device.
Sent from my LG-D803 using XDA Premium 4 mobile app

PAGOT said:
I think the OP like me wants to bypass the security set by the rules, not the app itself.
Best most money on an app spent!.... NOT...DOESN'T WORK IN MY CASE...
And you know 15 minutes are not enough to even try it due to the options and testing and hoping. Bought it long ago. In my case it didn't work...
Company has its own app. And another 2 apps checking if the app is admin etc.
Only thing that could be done is either to input the pass automatically when I unlock the phone. Maybe something via xposed. And add a second screen unlock option.
Somewhat like the iPhone jailbreak has it...loved the security bypass plus android pattern unlock....
Sent from my LG-D802 using Tapatalk
Click to expand...
Click to collapse
It depends obviously then on how the exchange server is configured. In my case e-email bypasses the security demands from the exchange server completely. When I had my HTC sensation, I used a mod you can find in the HTC sensation development, search for exchange - there is also something about using it with other phones.

see this post for files/kudos: http://forum.xda-developers.com/showpost.php?p=47063058&postcount=406
however, you don't need to push via ADB or anything:
1) uninstall your current email and exchange apks (via titanium backup or something similar)
2) either wipe dalvik cache or delete the associated email and exchange odex files in /data/dalvik-cache
3) install the 2 APKs (i usually install exchange first, then email)
4) setup your email
been working perfectly for me for the past week.
EDIT: this is the new 4.4 email/exchange, btw, with the gmail-style interface. it's fantastic.

I would really like to find a way to dodge the lockscreen and other policies that are enforced by Exchange. I don't want to use the KK email.

I use an app called Keystore Unlocker from the play store...must be rooted. You can skip the step adding a VPN and it will still work.
Sent from my VS980 4G using xda app-developers app

tlbland0426 said:
I use an app called Keystore Unlocker from the play store...must be rooted. You can skip the step adding a VPN and it will still work.
Sent from my VS980 4G using xda app-developers app
Click to expand...
Click to collapse
Can you explain the process? I've got the app and have it set up but I'm not entirely sure that I understand what it's doing...
The policies are still in place.

w0rdie said:
Can you explain the process? I've got the app and have it set up but I'm not entirely sure that I understand what it's doing...
The policies are still in place.
Click to expand...
Click to collapse
If you are just trying to get past the pin/password requirement this app stores it so you don't have to enter it when unlocking your phone. Not sure if it works for PIN security but it works for PASSWORD security.
Follow these steps:
1. Open app and click on Credentials store password (enter your lockscreen password)
2. Click Try to unlock
3. Check Auto Unlock
4. Click VPN w/o password for >=4.0
5. On the next screen click on # 3. Press Here (to remove phone lock)
That should do it and remove the lockscreen password that exchange forces you to use.

Soundchasr said:
Anyone figured out how to bypass Exchange security on the G2?
Thanks!
Click to expand...
Click to collapse
Have you tried simply increasing the lock timer to, say, 30 min?
I find I don't often have to enter the PIN with it set high like this.

vween said:
Have you tried simply increasing the lock timer to, say, 30 min?
I find I don't often have to enter the PIN with it set high like this.
Click to expand...
Click to collapse
I still want it to lock. I just want to use the pattern instead of the pin and that's not possible with the Exchange policy.

Soundchasr said:
I still want it to lock. I just want to use the pattern instead of the pin and that's not possible with the Exchange policy.
Click to expand...
Click to collapse
Have you tried buying your IT department Mt Dew and Pizza?

w0rdie said:
I would really like to find a way to dodge the lockscreen and other policies that are enforced by Exchange. I don't want to use the KK email.
Click to expand...
Click to collapse
real quick- you do realize that the kitkat email that i posted is in fact modded to dodge those policies, yes? that was why i posted it. install them, set up your account - it will still tell you "your account needs some extra settings" blah, but it won't actually enforce them.
if you're talking about wanting to use the LG email app, well, i don't believe anyone has made a mod for that. i find the new kitkat email app superior anyways, so if you're willing to try it, that is a solution.

fireworksordie said:
real quick- you do realize that the kitkat email that i posted is in fact modded to dodge those policies, yes? that was why i posted it. install them, set up your account - it will still tell you "your account needs some extra settings" blah, but it won't actually enforce them.
if you're talking about wanting to use the LG email app, well, i don't believe anyone has made a mod for that. i find the new kitkat email app superior anyways, so if you're willing to try it, that is a solution.
Click to expand...
Click to collapse
Thanks! Looks like it's time for me to install a recovery then.

Soundchasr said:
Thanks! Looks like it's time for me to install a recovery then.
Click to expand...
Click to collapse
You technically shouldn't need to in order to set it up, but it's not a bad idea to make a nandroid. And it'll make the dalvik wipe/odex removal easier. That part may not even be necessary, but I had some issues the first time installing it where Exchange Services started force closing repeatedly.

[FIX] Yahoo Mail - Could Not Sign In

Hey all,
I was having issues with my Moto X alerting me that it could not sign in to my Yahoo account. However, when I would go into the app, it would function correctly without me logging back in or taking any action. But, the notifications were annoying as it was happening at least once per day.
Anyway, I played around with the account settings and was able to remedy the issue, or so I believe. The fix is pretty darn easy...
- Go into either the mail app itself or go into system settings, click on the Email account, then account settings
- Click on your email address [email protected] to adjust those preferences
- Scroll all the way down and click on Incoming Settings, under the Server heading it should read: Android.imap.yahoo.com
- Remove the "Android." piece of the phrase, so it should now read: imap.yahoo.com
- Click Done
- Repeat these steps under the Outgoing Settings as well and your issue should be resolved
Let me know if this works for you, or if you continue to have issues, thanks.

Fine, good work's it. I am already done it.. thanks

Unfortunately yahoo has been doing this with android for years and no combination of settings will fix the random sign in errors. It can go weeks or even months between episodes for me.
Sent from my XT1060 using Tapatalk

Android is Google and Gmail......no surprise yahoo might have issues. LOL.
Sent from my N5 cell phone telephone....

someguyatx said:
Unfortunately yahoo has been doing this with android for years and no combination of settings will fix the random sign in errors. It can go weeks or even months between episodes for me.
Sent from my XT1060 using Tapatalk
Click to expand...
Click to collapse
You are right. It really has nothing to do with settings. It's on Yahoo's end not our phones. I ve been getting that sign in error ever since my 1st android phone (Htc hero) so i am used it by now. It comes and goes away.
Sent from my XT1056 using xda app-developers app

EVOSerb said:
You are right. It really has nothing to do with settings. It's on Yahoo's end not our phones. I ve been getting that sign in error ever since my 1st android phone (Htc hero) so i am used it by now. It comes and goes away.
Sent from my XT1056 using xda app-developers app
Click to expand...
Click to collapse
Interesting. I have always been able to modify the incoming and outgoing settings to remedy the issue. I will let everyone know if this works long term. Thanks for the info.

I am a few days into this correction and have yet to receive any notice from the phone / Yahoo / mail app that I could not be signed into Yahoo. Not waving the flag yet, but for those of you who were having this issue, it may well be a simple and permanent fix.

Hope it works for you, this error happens randomly and intermittently so I just live with it and have transitioned most things to gmail.
Sent from my XT1060 using Tapatalk

someguyatx said:
Hope it works for you, this error happens randomly and intermittently so I just live with it and have transitioned most things to gmail.
Sent from my XT1060 using Tapatalk
Click to expand...
Click to collapse
Yeah, multiple days into the experiment now and still working as advertised.

After over a month of use, I can now 100% confirm this fix. I have not had any issues since the day I made the change to the settings. So if anyone is still having this issue, please feel free to use the info provided in the first post.

Glad it worked for you, only temporary fix for me. I broke down and installed the Yahoo mail app again. Its gotten much better and does not destroy the battery any more.