I work for my company's IT department, and was recently tasked with factory resetting two SM-T510 tablets. The problem is that I cannot access developer settings because of the device policy. I believe their device policy still thinks it is being governed by my company's Microsoft Endpoint Manager/Intune environment through a configuration policy. However, that policy has been deleted and so have these devices from Endpoint. So, it seems to me to be a catch-22 where the devices thinks they're being governed by a security policy that no longer exists, and I have so far been unable to get the devices to recognize this fact.
I have tried booting into download mode, but without USB debugging being enabled, I (seemingly) wasn't able to do anything. Microsoft Company Portal is installed and I can log into it, but there is limited functionality since the device is no longer enrolled in Endpoint/Intune. I also do not have permission to uninstall Company Portal. I can't disable device policy from being a device administrator: the option is simply blanked out.
The build number for one of the devices is PPR1.180610.011.T510XXU1ASEF. I imagine it's the same for the other.
Again, all I want to do is factory reset the devices so I'm cool with any method to get me there.
Related
So I'm a network admin. I use strong passwords, alphas, numerics, etc.. keep a tight lid on what i install. AVs, spyware scans, etc.. no crap gets on my systems. Its been quite a number of years since I've had to clean out any of my systems.
Moving on...
My boss hands me a mini today from one of her family members - supposedly it has a bug and they didn't want to pay the geeksquad people.
Hearing that it has a bug, I didn't want to put it on the work network so I decided to hook it up to the wifi tether on my phone and download malware bytes via that. I figured - no windows bug is getting on my linux phone. I didn't think about any network-based attacks.
Few hours later, I turn my tether off and go to lunch when I visit my chiro twice a week. I'm laying down getting my back all jazzed up when my phone pops up with a "sign-in" error to my gmail. The password that I knew to be true didn't work. I hop on the bike and rush back to work.
I find all my googles signed out. I attempt to sign back in and get prompted with "suspicious activity detected, please verify". I did so through SMS and was prompted for my OLD password - which worked to my surprise (hacking 101: when you get in, first thing you do is change the pass). I was then prompted to change the pass which I did. I logged in to my gmail and saw a mobile login from an IP in peru. I also found quite a number of NDRs in my inbox (20 or so) with just a URL in it - so it was compromised for spam purposes.
Doing scans on all my systems, no sniffers or keyloggers running. They never had a chance to but just in case, i ran the scans anyway. My only thought is that mini connected to the net through my phone.
I'm thinking that since the phone presents itself as a wireless router and hands out DHCP, whatever local IP the phone sets itself to becomes the default gateway for the mini. If that mini is truly infected (at the moment, I'm not finding anything on it), and it does a network scan type of thing - could it have picked up some SMTP port that our android kernel keeps open? At that point, it wouldn't need my password (which would make sense that my old password worked). I didn't give it much thought at the time but I did think that a few hundred MBs of download was kinda high while the tether was connected.
So thats my question to anyone familiar with the kernel - network wise, are there any open, unsecured (smtp is unsecure in its nature..) services ran by the kernel? Once the phone goes into router mode and gives itself a local ipv4 address and a node (in this case the mini) hops onto the same subnet - those services would be readily accessible to that node.
IE: this bug scanned for port 25 or something.
Hi,
I am using the HD Mini with HTC Sense and Windows Mobile software.
I first used the wifi at work and entered their security key to get access to the internet without any problem.
When I got home I did the same, enter the security key number and got internet access.
I presumed that the device would save both sets of connection security keys, however when I went back to work the following day I had to enter the security key again.
The HD Mini does not seem to save the security key number. Nor does it save the home security key once I have typed in the office one.
Is there some way I can save both keys so it automatically connects up to the wifi?
Any apps that can do this on the Windows Mobile or HTC Sense system?
John
Hey, i doubt this is a common error as i am able to do this with no problem. After i type in the security code the first time the phone automatically signs me in. This is the case for using the wifi at my parent's house, my univerisity and the couple of friend's houses i have logged in at.
The thing with my university though is that the first time i had to manually establish a connection by going to adaptor and networks and then filling it my details. Whenever you fill in a security key it should automatically save the key for future access. However, your problem may actually not be the phone saving the key, it may be that the wifi source(your work) requires you to establish a new connection everytime, for security reasons.
Do some trial and error because as far as i know, i've never had difficulties with having to re-enter a security key.
Hi Kazmir,
Thanks for the suggestion. I entered the work wifi access manually, just as you suggested, and now it picks up each site automatically without having to re-enter the security keys.
Glad i could help.
I live in Venezuela. We have an alright cell infrastructure but I've noticed that the data services are far from 99% uptime. There are areas and times of the day when you lose your data connection completely. It seems though that Windows Mobile can't handle this environment properly. After losing a connection a couple of times, it just fails to get it back again even under working conditions. I noticed this because a reboot or sometimes just switching to airplane mode for a few seconds and back brings you back online (Which should've happened automatically without intervention)
Venezuela is also one of the largest Blackberry markets in the world. Everyone has a blackberry here and I've had plenty of chances to observe their behaviour under what I'm guessing are the same conditions. Blackberry phones are not at all hindered by the intermittency of services. They seem to take it in stride and keep on going.
Now, I wan't to get to the bottom of this and there are a few issues that need clarification first:
1. Is RIM compensating through the use of Push services or some kind of server retention where data is held until the phone comes online? That seems like a good way to mitigate the effects of intermittent connections and I want to know if they're doing just that since I know a lot of their software routes data through their servers. (It also baffles me that Palringo or IM+ don't do this to the same degree)
2. Why does WinMO fail so miserably at reattaining connection? Even if RIM is compensating through server-side retention, it STILL performs better at reconnecting reliably and repeatedly. Is there anything I can do to fix this? What is happening that is making windows seemingly give up after a few failed attempts?
3. I've heard that RIM requires the carriers to have dedicated "RIM" servers to guarantee the quality of service for their phones alone. Is this true?
4. How does Android perform under these conditions? I haven't had a chance to really try out these phones and most users are not keen enough to technical matters to notice the flaws. We also don't have much Android adoption yet.
Bonus question:
I'd like to study this matter a little more scientifically. Is there any easy way I can make a batch file or some other script to regularly ping a server and log the results? I do know how to program but I'm not well versed on the WinMO platform so I'd like to avoid that rampup with a simple script instead of a full program.
Your compare is a little vague in scope. BB is a dedicated "always connected" device, where the data-link is active and the server pushes through that to the waiting client on the device. This demands that a connection must be active all time, so the device will probably just re-connect automatically. As a side-effect you can browse anytime you have an (automatic established) connection. Also do all services on that connection always go through RIM servers - you never connect directly form the device to any external resource! Blackberry is VERY special in that regard!
Windows Mobile is highly configurable by the OEMs that make the devices. There is no own strategy how to link the connectivity and the services on top of it. This is a matter of the OEM for the device or the vendor of a service/application the you have bought. Without telling more about your device and checking on the GPRS/Data auto-connect and auto-disconnect it is hard to give advice. For sure there is no permanent connection establishment automatism (as you do not need that because there are no default push services).
Usually (as all most other devices as well), the connection is done when a service on the device request one, not any earlier. This connection establishment takes time (some seconds) and then you can use the connection, until it either breaks, you disconnect or the device disconnects after a period of inactivity.
Fair enough, but I have several apps that are constantly seeking information. IM and social networks. They seem to reconnect automatically, yes. But the thing is that at some point in time, that auto-reconnect process seems to crash and no longer works. The apps keep requesting it but it just never comes.
Is there a hard limit? Is there a glitch? Where are the settings for this?
(I've observed this on the HTC Touch, HTC Imagio and HTC Touch HD)
Establishing connections is handled in the RADIO part of the build just on request of the OS layer. The radio stack is an own partition on the device (distinct form the OS). They interface via the RIL (Radio Interface Layer).
So if there are problems in that part, they are probably due to the radio stack on the devices or the RIL parameter settings. Both are under responsibility of the OEM (in this case HTC). Complain to them (and your network operator) and ask for a resolution of your problem - this is no Windows Mobile related generic problem.
I had faced similar problems with an old device of mine where only the first time a GPRS connection could be established, and then no more until the radio was disabled/enabled again. I had solved this by picking the a radio part that was explicitly tested and released for my country and operator. Though all things are "standardized" by 3gpp sometimes dedicated device<->network alignment may be needed.
So, the device uses an eMMC for the drive. Is it possible to set the ATA security password on the drive, just like you can for regular hard drives? I don't see an option in the BIOS to set it. Perhaps the option is there somewhere though.
I basically want to protect the data on the tablet. I don't think the BIOS administrator/user password provides sufficient security since that password can be reset and the data can then be accessed. I don't want to use software encryption since I don't want to slow the device down.
Any ideas? Thanks
The performance impact of BitLocker is negligible; in most scenarios it will be lost in the time that the CPU would sit idle waiting for I/O to complete anyhow. If you want to actually protect data, encryption is the only meaningful option.
After manually bypassing FRP on a Cricket variant of the HTC 626s running Lolipop 5.1 earlier today I noticed in my windows Device Manager this..
After hard resetting and letting the Desire 626s' apps initially configure and load (takes about 3-5 minutes) in my Windows Device Manager "Android Device" present. I checked adb and it was this handset I had connected to the PC but the connection established was not authorized of course (unauthorized). The adb connection only lasts during the period the apps are configuring then it's no longer.
C:\WINDOWS\system32>adb devices
List of devices attached
FA643SY07652 unauthorized
Now if only there was a way to set it as authorized by enabling USB Debugging. Might look into it sometime if I revisit this handset again. Just thought this was worth mentioning. If anyone makes use of this please post and let us know!
-phonecapone