Related
Whenever I enabled my Exchange work email account, the phone forces me to set a password which drives me nuts, because I have to then set the screen timeout to at least 2 minutes so I don't go mad typing in the password every time I reach for the phone. I found a lock delay app which works great, but only after I disabled Exchange, so the screen times out after a minute but only locks out after about 10 minutes - MUCH better.
I just can't use this with Exchange as the 'security policy' over-rides everything and drops me back to password lock out with screen time out.
Any thoughts?
Lock Picker
Search Android Market for an app called Lock Picker by Jeroen Brosens. That should solve your problem.
And the Exchange Security Policy won't override this?
cosmicharade said:
And the Exchange Security Policy won't override this?
Click to expand...
Click to collapse
As far as I know, no. Lock Picker runs as a service which completely disables the policy. I.e. the phone will be locked no more. Works like a charm on my Desire. However, if you at some point have the need to remove and re-add the account remember to disable the service while doing so.
I found a few applications but no app by the name of 'lock picker' - I Lock Delay is great though as it sets a lock out different to the screen timeout.
Ideally one would be able to delay the lock past screen time out, I don't mind using a password (prefer in fact) but it's annoying to have to re-enter a password every two minutes, otherwise the screen is left on if I set the timeout for longer.
You could try this :
If your company is enforcing exchange security policy regarding password , but you want to use the lock pattern (Gesture) instead then you can do the following:
1. Delete your exchange Setup on the phone.
2. Go into Security and setup a lock pattern.
3. Once that is done and tested readd your exchange account.
4. Download the app called LockPicker from Market place.
5. Go into the program and enable the Override.
6. Enjoy the new way of unlocking your phone.
Click to expand...
Click to collapse
i also had this problem... when i setup my company mail account that the phone forced me to enter a password ...
so i just installed LockPicker and it worked ... no password entry screen anymore
great app !
- kr
Had the same problem too.
I made a new unlock pattern first, added my exchange account, installed LockPicker and then uninstalled it, works like a charm
Ok so I've installed lockpicker and removed the forced password. If I remove this app now, I can go back to before with the Lock Delay app? Can I also run custom lock screens on top too that display info on the lock screen?
The ideal set up is delayed password protection, say 20 minutes, with screen time out to 2 minutes.
There's quite a significant security flaw in Google wallet at the moment.
Going into application settings and then clearing data for wallet is the same as resetting wallet from within the application, without having to enter a pin. Know what that means? You're able to set up a new password and have access to your prepaid card.
That's right. If a tech-savvy thief has your phone and you don't have a passcode on the lockscreen (possibly because Google's implementation of passcode stuff sucks) or the screen hasn't timed out yet, the thief will have access to whatever funds remain on your Google prepaid card, regardless of the pin you set in the application.
This is yet another reason why Google needs to add the ability to lock out INDIVIDUAL applications with a code or face recognition, not just the friggin' lockscreen. If someone gets your phone after you've entered your lockscreen code/pattern, they have free reign over the device as long as the screen is on. Third party software for this purpose just doesn't work very well at this stage. This functionality needs to be integrated into the OS. Sorry for going off on a tangent.
Basically:
1) Go into application settings
2) Clear data for Google wallet
3) Open wallet and set it back up
4) Everything remaining on your Google prepaid card can now be used.
That's a good point I don't know if Google wallet is supposed to more secure than a credit card.
If some one steals your wallet, what do you do? Suspend any transactions for that stolen card. Just do the same with the cards you have on Google wallet.
Or I'd just remotely wipe the phone , so they have none of your information on your phone .
Sent from my Galaxy Nexus using XDA App
bigmike2424 said:
That's a good point I don't know if Google wallet is supposed to more secure than a credit card.
If some one steals your wallet, what do you do? Suspend any transactions for that stolen card. Just do the same with the cards you have on Google wallet.
Or I'd just remotely wipe the phone , so they have none of your information on your phone .
Sent from my Galaxy Nexus using XDA App
Click to expand...
Click to collapse
Any actual cards that you add to Wallet will of course be removed, but the Prepaid card will still work. How easy would it be to suspend transactions with Google?
Ouch... report it!
Greets
____________
mDroid - Tapatalk
Phone: LG-P500
ROM: Nitrogen - Beta-V1b
Kernel: custom .35
Theme: ICS (Z25 - paid. ported by me )
Tweaks: ALL
Wishlist: Galaxy Nexus
You have to have a passcode to use the wallet feature. I am not following this at all seriously.
To use this application, you have to get into line, make sure that your screen is on when you get to the counter and then make sure you put in your pin #/Passcode before swyping.
The only way for a thief to get access is to take your phone while its in your hand and the screen is open but then also if the screen shuts off, the application closes and you have to input your pin #/passcode again.
Try it.
Ronin09 said:
You have to have a passcode to use the wallet feature. I am not following this at all seriously.
To use this application, you have to get into line, make sure that your screen is on when you get to the counter and then make sure you put in your pin #/Passcode before swyping.
The only way for a thief to get access is to take your phone while its in your hand and the screen is open but then also if the screen shuts off, the application closes and you have to input your pin #/passcode again.
Try it.
Click to expand...
Click to collapse
You can reset the application without the passcode. Once that's done, simply open it up, set it up with a new passcode and you have access to the prepaid card immediately.
Ronin09 said:
You have to have a passcode to use the wallet feature. I am not following this at all seriously.
To use this application, you have to get into line, make sure that your screen is on when you get to the counter and then make sure you put in your pin #/Passcode before swyping.
The only way for a thief to get access is to take your phone while its in your hand and the screen is open but then also if the screen shuts off, the application closes and you have to input your pin #/passcode again.
Try it.
Click to expand...
Click to collapse
try this:
open clear google wallet data, run google wallet again.
it will prompt you for new passcode and link it to the google account on your device.
of course, all the credit card info is wiped, but your google prepaid card can still be added without passcode, so whatever remaining balance you have on it will be usable by whoever activate it
Ronin09 said:
You have to have a passcode to use the wallet feature. I am not following this at all seriously.
Click to expand...
Click to collapse
The OP explains it perfectly.
Evangelion01 said:
1) Go into application settings
2) Clear data for Google wallet
3) Open wallet and set it back up
4) Everything remaining on your Google prepaid card can now be used.
Click to expand...
Click to collapse
That means anyone who gets your phone, even while it's turned off, can follow these steps to remove whatever pin you have set. They can then set up Google Wallet with their own pin and add your prepaid card with all its funds back onto the app and start using it.
To be safe, you'll need to set your lockscreen to use one of the other security types such as pin, pattern, or password, and then hope nobody gets ahold of your phone while the phone itself is unlocked. I don't find face unlock to be very safe at all so I won't even recommend it for protecting Google Wallet funds.
to add some other failure of google wallet...somehow ur wallet gets registered w/ ur device...or that's how it looks like...i had a nexus s w/ wallet fully functional and about $12 left on the prepaid card...bought the GN and gave the NS to my wife...fully wiped the device, reinstalled the wallet and activated w/ my wife's account...guess what she got my remaining balance and when i activated mine on the GN i only got the $10...but to be 100% fair it could be something related with the fact that we're not really supposed to have this running on our phone...so might be something related to that, since my NS was on t-mobile and not sprint...hence i was running a "not approved" app...
Evangelion01 said:
You can reset the application without the passcode. Once that's done, simply open it up, set it up with a new passcode and you have access to the prepaid card immediately.
Click to expand...
Click to collapse
I was having a hard time understanding too until you pointed this out (again?) ... thanks for the heads up.
did you submit this issue to google?
Elganja said:
I was having a hard time understanding too until you pointed this out (again?) ... thanks for the heads up.
did you submit this issue to google?
Click to expand...
Click to collapse
Nope. How would I go about doing that? Knowing Google, even if we were to inform them today there wouldn't be a fix for at least a month.
Still can't believe that after three years they haven't got a solution allowing you to passcode protect individual applications in the OS. Dumbphones could do that back in 2004!
Evangelion01 said:
Nope. How would I go about doing that? Knowing Google, even if we were to inform them today there wouldn't be a fix for at least a month.
Still can't believe that after three years they haven't got a solution allowing you to passcode protect individual applications in the OS. Dumbphones could do that back in 2004!
Click to expand...
Click to collapse
should be here: http://support.google.com/wallet/bin/static.py?hl=en&page=known_issues.cs (click on "let us know") but it isn't working for me atm
Elganja said:
should be here: http://support.google.com/wallet/bin/static.py?hl=en&page=known_issues.cs (click on "let us know") but it isn't working for me atm
Click to expand...
Click to collapse
No surprise there, then. Thanks for the link. Hopefully they'll fix it by Q2.
MIUI had a sweet security app based on individual apps. I would lock down my games cause my boy liked to get in there and press buttons aka delete my saves.
I don't know what process it would involve to port this over. But it would be a welcome one.
Galaxy Nexus - 4.0.3 CM9
Asus Transformer - 3.2 Revolver
I went ahead and emailed the relevant Google deparment about the issue. I'll keep you all updated if I get a response, but bear in mind that this is Google's rubbish customer service that we're talking about... I'm not getting my hopes up.
If you lose your phone just log into your Gmail and change the password. Problem solved.
bp328i said:
If you lose your phone just log into your Gmail and change the password. Problem solved.
Click to expand...
Click to collapse
Yes, problem solved if you can get access to an internet-connected device quickly enough.
Evangelion01 said:
Yes, problem solved if you can get access to an internet-connected device quickly enough.
Click to expand...
Click to collapse
I guess I just don't see it as big of an issue as you do.
I mean if you lose your real wallet you have to track down the phone numbers to your credit card companies and call then all one by one. It would be easier and quicker in this day and age to find an internet-connected device.
All my friends and family have internet-connected devices (smart phones) so I could change my Gmail password faster than I could call one credit card company, get through their phone system, get a live person on the phone and cancel the card.
When it comes to money, credit cards or any thing being use as either of the two there will always be flaws that someone will try to exploit. And with this flaw it can be correct/stopped by the end user within 5 - 10 minutes.
But seriously good find on this!
bp328i said:
I guess I just don't see it as big of an issue as you do.
I mean if you lose your real wallet you have to track down the phone numbers to your credit card companies and call then all one by one. It would be easier and quicker in this day and age to find an internet-connected device.
All my friends and family have internet-connected devices (smart phones) so I could change my Gmail password faster than I could call one credit card company, get through their phone system, get a live person on the phone and cancel the card.
When it comes to money, credit cards or any thing being use as either of the two there will always be flaws that someone will try to exploit. And with this flaw it can be correct/stopped by the end user within 5 - 10 minutes.
But seriously good find on this!
Click to expand...
Click to collapse
That's true, I was trying to look at the worst case scenario. The flaw itself is pretty serious, but the consequences wouldn't be that great yet. I've only heard of one person who had over $100 on their prepaid card, and I think there are extra measures in place when purchasing larger items? Not sure.
But something as simple as this certainly needs to be fixed before NFC payments go mainstream.
Evangelion01 said:
That's true, I was trying to look at the worst case scenario. The flaw itself is pretty serious, but the consequences wouldn't be that great yet. I've only heard of one person who had over $100 on their prepaid card, and I think there are extra measures in place when purchasing larger items? Not sure.
But something as simple as this certainly needs to be fixed before NFC payments go mainstream.
Click to expand...
Click to collapse
I agree it is simple and does need to be fixed. They could make a quick fix by having each app that is based off our Gmail accounts require the Gmail password re-entered when an app is setup and not just ask permission.
My company uses an Exchange server for email, and it works great....except for one thing:
Due to their arcane policies, I am only able to use a pin lock on my phone. All of the other lock options are disabled, even face unlock. Also, they have the screen set to time out at 1 minute, which sucks when trying to use pretty much any application.
Does anyone know of a way to override these policies since my device is rooted?
Try this:
http://forum.xda-developers.com/showthread.php?p=14577188
Sent from my Galaxy Nexus
You could also get Enhanced Email from the market. Although its pricey, it works great.
That is not arcane at all, those are good security practices. This is why Android still lags behind apple and rim at the enterprise level - too many easy hacks to bypass the security that businesses need. Faceunlock can be cracked by a polaroid and many swipe patterns can be guessed by looking at fingerprints on the screen.
Honestly, with all the personal information that resides on a smart phone I don't understand why everyone doesn't have a strong pin on their phones. Hope your buddies don't swipe your phone at the next party, unlock it with a facebook pic, and play some prank with your work email account.
for me I guess its the stupid 1 minute lockout period. For example, if I am trying to use my phone as a GPS, I only get to see the screen for 1 minute. BOOM...locked out.
Pandora... NOPE. locked out after 1 minute, sure the music still plays, but I have to unlock the stupid phone to change songs and what not.
Scold me all you want virtualcertainty, the minimum 6 character pin, and 1 minute lockout drives me nuts.
Wasn't trying to scold you, just explaining the risks involved and the reasons for the policies. I wouldn't recommend to any of my clients to set policies lower than that. And I know a bunch of people that want an android for work but the IT department won't issue one or even allow people to use their own because of the work arounds.
My work policy is a 4 character pin with 1 minute time out. I exceed that on my device - 5 character pin and 30 second time out. In no time you won't notice it at all.
I don't know if this is a bug, but I have been able to remove the pin lock policy on my exchange account EVERY time
This is what I do
Set up Account
When it tells me that it's going to disable face unlock ,etc , HIT THE BACK key
Voila, you're out of there and it lets you go forward.
Don't know if it's our exchange server but that works for me
BooDaddy said:
for me I guess its the stupid 1 minute lockout period. For example, if I am trying to use my phone as a GPS, I only get to see the screen for 1 minute. BOOM...locked out.
Pandora... NOPE. locked out after 1 minute, sure the music still plays, but I have to unlock the stupid phone to change songs and what not.
Scold me all you want virtualcertainty, the minimum 6 character pin, and 1 minute lockout drives me nuts.
Click to expand...
Click to collapse
Then you should probably talk to your employer about it. This is an extremely basic security practice, and like multiple people have already said the easy "hack" to get around the practices is the exact reason most employers don't allow Android users access to their Exchange servers.
My company doesn't allow any Android phones on their Exchange network, exactly for this reason.
BTW, just for reference, it is possible to implement monitoring tools in an Exchange server to notify the administrators of changes to security features. Most employers wouldn't even talk to an employee that's violating security practices...it's just "Here's your box and there's the door". Complain all you want about them, but they're there for a reason. I wouldn't risk it just to escape having to input a key combination.
BooDaddy said:
My company uses an Exchange server for email, and it works great....except for one thing:
Due to their arcane policies, I am only able to use a pin lock on my phone. All of the other lock options are disabled, even face unlock. Also, they have the screen set to time out at 1 minute, which sucks when trying to use pretty much any application.
Does anyone know of a way to override these policies since my device is rooted?
Click to expand...
Click to collapse
I lol'd.
How dare a company try to protect their IP with a password on your phone...
Samsuck said:
I don't know if this is a bug, but I have been able to remove the pin lock policy on my exchange account EVERY time
This is what I do
Set up Account
When it tells me that it's going to disable face unlock ,etc , HIT THE BACK key
Voila, you're out of there and it lets you go forward.
Don't know if it's our exchange server but that works for me
Click to expand...
Click to collapse
Maybe your admins didn't force device security. My company doesn't even allow pattern locks
martonikaj said:
I lol'd.
How dare a company try to protect their IP with a password on your phone...
Click to expand...
Click to collapse
Im totally aware of a company eanting to protect thier IP. I dont even mind having some sort of lock on my phone. But it would br nice to be able to at least bump the lockout time a bit to make the phone useable. Or at least let me do pattern lock.
Theres no sense in trying to make this a pissing contest on security policies.
soapbox,
I sign up to get company email on my own phone as a convenience to both of us. If their security policy was so strict that it made it difficult to use my phone, that convenience would go away and any after hour emails would have to wait until the morning. Obviously not everyone can get away with that, but luckily I can.
I second trying EE,
I picked up Enhanced Email from the amazon app store when it was the free app of the day and have been happy with it(It can disable exchange policies). I do have the lock feature on my phone enabled however because I also use Google Wallet, so I want a little extra protection.
So, you need my phone an also need two separate passwords to use Google Wallet. Hopefully by that time I will have wiped my phone and/or located it.
once on a custom rom, ive never had a problem with exchange security settings. unless i'm going out for a big night (and might lose my phone) i leave the security off.
versd said:
once on a custom rom, ive never had a problem with exchange security settings. unless i'm going out for a big night (and might lose my phone) i leave the security off.
Click to expand...
Click to collapse
If you are able to turn off the PIN lock while using corporate exchange mail then your exchange server does not have the required security policy.
Unless there's something else you've done which you didn't post.
Samsuck said:
I don't know if this is a bug, but I have been able to remove the pin lock policy on my exchange account EVERY time
This is what I do
Set up Account
When it tells me that it's going to disable face unlock ,etc , HIT THE BACK key
Voila, you're out of there and it lets you go forward.
Don't know if it's our exchange server but that works for me
Click to expand...
Click to collapse
Yep, that'll be the server as I get a security pop up and you can't dismiss it. Once setup all other lock options are off limits.
The annoyance for me was the inability to change the time out period, it made it unusable in certain situations.
Sent from my Galaxy Nexus
BooDaddy... I'm an IT Director for a large, publicly held company. We allow iPhones and Android devices to use our enterprise Exchange email with a 4-digit PIN, 1-minute lock AND the understanding that we can wipe the employee's phone if necessary. Installing software to circumvent this security would violate our security policies and would result in a disciplinary action.
Is this your personal phone or did your company provide it?
105437 said:
BooDaddy... I'm an IT Director for a large, publicly held company. We allow iPhones and Android devices to use our enterprise Exchange email with a 4-digit PIN, 1-minute lock AND the understanding that we can wipe the employee's phone if necessary. Installing software to circumvent this security would violate our security policies and would result in a disciplinary action.
Is this your personal phone or did your company provide it?
Click to expand...
Click to collapse
Not sure how the question is relevant to the thread topic but it is my personal phone.
Look here for solution: http://forum.xda-developers.com/showthread.php?p=19792676
BooDaddy said:
Not sure how the question is relevant to the thread topic but it is my personal phone.
Click to expand...
Click to collapse
Not really relevant, just curious because if the company bought it and pays the monthly costs then you really shouldn't have too much to complain about. So I guess it's your choice to connect to the Exchange server, I would never expect a company to mandate corporate email on an employee's personal phone.
105437 said:
Not really relevant, just curious because if the company bought it and pays the monthly costs then you really shouldn't have too much to complain about. So I guess it's your choice to connect to the Exchange server, I would never expect a company to mandate corporate email on an employee's personal phone.
Click to expand...
Click to collapse
Yeah, had it been their phone and plan, I wouldn't mind it. Their dime, their rules.
While its not mandatory for me to have it, it is very handy since I am a systems admin (Linux) and its nice to get alerted via logwatch emails when something bad happens.
Little help please, have just purchased a M9 second hand and have had some issues trying to log into my google account.
The phone has been hard reset and starts up as normal, once I connect to the wifi and get past that when it asks me to enter my gmail and password it always sends me back to the wifi step, not allowing me to get into the home screen or even to skip the google account registration. Even worse is that I received an email from google saying it registered my log in. Any help?
You have become a victim of google frp (factory reset protection).
Hit youtube. There is a recent post that shows you how to get around it. I think its by rootjunky?..
The problem is not you. It's google's silly, flawed system.
http://forum.xda-developers.com/one-m9/help/stuck-google-verify-account-t3319383
Thanks to the both of you, got the issue resolved thanks. An odd thing that's been implemented.
omz123 said:
Thanks to the both of you, got the issue resolved thanks. An odd thing that's been implemented.
Click to expand...
Click to collapse
It's a new security feature designed to prevent someone from stealing a phone and resetting it to use it. Even if you reset it, you have to authorize it at least once to prove it's yours.
My work requires a password and encrypted phone. No biggie. However, OK Google does nothing with a locked device (we can't use Trusted Agents). On my Note 5, I could still do non-personal stuff ("what's the weather?," "wake me up at 6 AM"). With my Pixel XL, I can do nothing.
Is this personal assistant? Is there an alternative? Quite annoying to say the least.
jackburnt said:
My work requires a password and encrypted phone. No biggie. However, OK Google does nothing with a locked device (we can't use Trusted Agents). On my Note 5, I could still do non-personal stuff ("what's the weather?," "wake me up at 6 AM"). With my Pixel XL, I can do nothing.
Is this personal assistant? Is there an alternative? Quite annoying to say the least.
Click to expand...
Click to collapse
You can't use it if you don't allow trusted voice.
toknitup420 said:
You can't use it if you don't allow trusted voice.
Click to expand...
Click to collapse
I think the latest update knocked it sideways.
I never had any issues until the latest GA update.
Doing a little research I have found a bloom of complaints in the last couple of weeks.
I have to continually go back and check the trusted voice attribute.
i suspect it has to do with have multiple google accounts in my phone.
I am sure it will be addressed in future updates.
parakleet said:
I think the latest update knocked it sideways.
I never had any issues until the latest GA update.
Doing a little research I have found a bloom of complaints in the last couple of weeks.
I have to continually go back and check the trusted voice attribute.
i suspect it has to do with have multiple google accounts in my phone.
I am sure it will be addressed in future updates.
Click to expand...
Click to collapse
I have been having issues too, does your "Trusted Voice" setting keep getting disabled in the background? That's the problem I keep noticing in my Google App Settings (in hotword detection). I talked to a support rep, just keep sending feedback from that settings page by pressing the question mark in the upper right, then selecting Send Feedback at the bottom of the page that appears. Simply type in that Trusted Voice disabled itself and submit. The only way we get this fixed is by telling them about it.