I've setup a couple of Hermes handsets this past week, one on Cingular (US) and one on Vodafone (UK).
Our Exchange server is hosted in the UK.
I have a problem whereby the password you are forced to set when setting up the push/sync is prompting the user for entry almost every 5 minutes (ie. when the phone requires interaction from 'power save mode')
Entering the password 'settings' screen is no use as the option to change the 5 minute period is greyed out.
Is there a fix to this? Is this handset related or server related?
Surely I'm not alone with this problem?
Hermes (WM5) (1x Cingular US, 1x Vodafone UK)
Vini said:
I've setup a couple of Hermes handsets this past week, one on Cingular (US) and one on Vodafone (UK).
Our Exchange server is hosted in the UK.
I have a problem whereby the password you are forced to set when setting up the push/sync is prompting the user for entry almost every 5 minutes (ie. when the phone requires interaction from 'power save mode')
Entering the password 'settings' screen is no use as the option to change the 5 minute period is greyed out.
Is there a fix to this? Is this handset related or server related?
Surely I'm not alone with this problem?
Hermes (WM5) (1x Cingular US, 1x Vodafone UK)
Click to expand...
Click to collapse
This is server related. Technically you do not need a fix because everything is working as intended. What's happening is the exchange admin is enforcing a security certificate on your phone with the idea being that if you lose your phone, strangers cannot access your data. Further more they can trigger a remote wipe of your device after a set number of failed password attempts. This is pretty much standard in any corporation as they don't want outsiders getting access to their information. That being said there are ways to get around it. Just bear in mind that if you lose your phone, whoever picks it up will have full access to it and all information it contains. If you're willing to accept the potential implications then it's very simple. Google "zenyee.com stay unlock" and read through that thread on Mobility Today. There's a cab on the second page you need to install that will "un-grey" that box so you can set it to something more reasonable, like 24 hours.
Excellent, thanks for the info!
Is there anyway the server can be changed to avoid having to install this Zenyee.com Stay Unlock.zip on each unit?
Yes the exchange server administrator can change the certificate requirements (password requirements as well as idle time requirement).
I am the admin, any idea where this option is?
Related
Hi there,
my company forces every WM user to activate the WM6 default Device Lock with a cab you have to install, which changes some registry parameters, I guess. But this cab also includes certificates (WLAN and VPN-access) that I really need, so I have to install it.
But I don't want to have my device locked every 15 minutes (especially if using Navigon...). If I try to disable Device Lock in the Settings menu, the field is greyed out. But is there any registry parameter which disables this device lock?!?
Is there another way to disable it?
Thanks in advance!
First enable the box again to untick it:
HKLM\Security\Policies\00001023
0 = Enabled; 1 = Disabled
Then install Zenyee.com Stay Unlock.cab and soft reset your device.
This program will prevent the lock to be activated again.
Great! Works just perfect for me!
This might just be what i'm after Last week I was using an ipaq on wm2003 but since the weekend I've bought myself a Sony E X1 and logged onto the works network this morning and it installed some security polices and then it started locking the phone every 5mins.
Quick search and I find this thread, hope it works, let you all know .
Ta
Update, it has given me the option and I have disabled it rather than setting it to say 24hours and also ran the keep unlocked cab file. See how it goes at work tomorrow.
well i can confirm that no further locks have appeared since logging back onto the work network can see i'm going to enjoy this forum. ta
phoenix3dfx225 said:
well i can confirm that no further locks have appeared since logging back onto the work network can see i'm going to enjoy this forum. ta
Click to expand...
Click to collapse
It works yes, but i found that the app absolutely wiped out my battery which ran very hot. I removed the app and this solved the problem, although unfortunetly device locked appeared once more. Does it wipe out yours?
WM 6.1 VPNLockingmy device
Thanks very much gang!!! I have installed Zenyee.com Unlock cab. It solved the goddamn issue, and allowed me to untick the password request in Setting, Lock.
before Icould not untick it.
now the device is not locking itself every time i turn the screen off
The manual registry cleaning worked very well. Thank you for the tip.
I haven't installed the .cab so we'll see how long it takes until it gets locked again...Maybe it won't I don't have much faith in our IT Group
Not wanting to spoil anyones fun, and i can see why periodic locking of the device is a pain, it is obviously being done for a reason. Bear in mind that it may well be considered a breach of employment contract to circumvent said security measure.
For information i am a BlackBerry Admin and so have a "vested" interest in device security. Just think what "sensitive" detail may be on the device and so open to anyone if it gets lost and this hack is running.
deedee said:
Not wanting to spoil anyones fun, and i can see why periodic locking of the device is a pain, it is obviously being done for a reason. Bear in mind that it may well be considered a breach of employment contract to circumvent said security measure.
For information i am a BlackBerry Admin and so have a "vested" interest in device security. Just think what "sensitive" detail may be on the device and so open to anyone if it gets lost and this hack is running.
Click to expand...
Click to collapse
Very true deedee,
Personally I dont use the hack on my company mobile, but on my personal one which i used to use via exchange, the policy lock is still enforced even after removing server details, which is a proper pain. The only real way is a hard reset in my experience. The app does work but wiped out my battery daily (and breaking the said security policies, which you are correct can end in your p45 in the post!!!)
Great words of wisdom as usual!
Been looking for a way to get ride of the pain in the ass device lock.... And this just made my day... thanks alot....
I agree as well. However, isn't there a possibility (via Mortscript or whatever) to disable the locking when running some application (a navigator as mentioned in this message) and to enable it again after quitting?
This way, you don't have the lock while navigating, and the policy is still upheld (unless of course, your mobile gets nicked out of the car while in navigation mode).
THANK YOU!
omg so nice to get rid of that damn phonelock thanks!!
I was going to sync my phone with my company's exchange server the other day, but I stopped because after filling out my user name and domain and hitting next, it said "the exchange server will have to apply security policies on your device in order to continue" or something like that.
So I guess I was wondering if anyone knew what type of "security policies" these are. I mean maybe I am being an idiot, but can they restrict my ability to install/remove applications. I am enjoying messing around with my phone, and I really would not want something giving me limited access to my phone. My phone is a hermes100, but I am pretty sure this message will come up on any other winmobile phone too. So anyone have any idea what this does?
thanks for the help
My company's exchange server enforces a "LOCK" policy of 20 minutes. Every 20 mins the phone locks up and you have to enter a 4-digit pre-set number to unlock. Its very ANNOYING !!!!
I was able to bypass this policy using a software. Let me know if you need it.
Depending on your phone version and verison of Exchange, they have varying degrees of control, but none over software management (beyond device wipe with 2007). But that is also a standard message and I would bet the most they may have (but mostly likely don't) is a lock policy. Moving forward with Mobile Device Manager 2008, your administrators will have nearly as much control over the handheld device as they do the PC. As an IT administrator I see this as a blessing and a curse as a user wanting free-will. To strike the balance will be tough with these new found inroads into device control.
tmknight said:
Depending on your phone version and verison of Exchange, they have varying degrees of control, but none over software management (beyond device wipe with 2007). But that is also a standard message and I would bet the most they may have (but mostly likely don't) is a lock policy. Moving forward with Mobile Device Manager 2008, your administrators will have nearly as much control over the handheld device as they do the PC. As an IT administrator I see this as a blessing and a curse as a user wanting free-will. To strike the balance will be tough with these new found inroads into device control.
Click to expand...
Click to collapse
I have an ATT 8525 Herm100, and you were right, it was a lock policy. At least that's all I see so far....
Hi all... I have exchange set up with push mail at work (a few if us are testing it instead of using expensive Blackberry licences).
So far it works really well (if a little battery sucking!) apart form the annoying password that constantly pops up after a few minutes. Our IT guy has tried to lengthen this to no avail! None of the Blackberry's do it so why on earth do our WM devices have to do it? I can understand it happening once the phone had been switched off, as if it's knicked then when the thief switches it on they ned apassword, but every fgew minutes? Boy is that tedious!
Any help would be greatly appreciated!
adamelphick said:
Hi all... I have exchange set up with push mail at work (a few if us are testing it instead of using expensive Blackberry licences).
So far it works really well (if a little battery sucking!) apart form the annoying password that constantly pops up after a few minutes. Our IT guy has tried to lengthen this to no avail! None of the Blackberry's do it so why on earth do our WM devices have to do it? I can understand it happening once the phone had been switched off, as if it's knicked then when the thief switches it on they ned apassword, but every fgew minutes? Boy is that tedious!
Any help would be greatly appreciated!
Click to expand...
Click to collapse
I use Direct Push to connect to an Exchange account (both on a TP and on the Diamond). No Rom I have installed on them has had this problem - I only ever put in my password once and it remembers it and never asks for it again. I have also used Direct Push on several previous WM phones (5, 6 and 6.1) and have not had this problem on those, either!
This may be a silly question, but did you tick "save password" when setting up the exchange account on the phone?
The PIN requirements are set on the server side (i.e. Exchange) so you need to have your IT guys look there. It's easy enough to setup. Your 'blow away' device settings are also defined there.
We run about 600 WinMo devices with Direct Push on our private APN and have the password timeout set to 30mins accross the board (as defined by our security policy, auitors would really like 15 mins or less ). This has been running for several years and over many generations of device (inc. several Raphael's now) and the PIN timeout has always worked as expected.
Remember you CAN override the timeout on the device to lower the value (15min lock rather then 30 etc., the server just defines the MAXIMUM time that the device will remain unlocked without requireing the PIN and what the constraints of that PIN are). You configure that like you would expect from the Lock control panel.
You have to use SSL connection
Maybe you need more postage
Thanks, I will talk to IT again as they said 15 was maximum they could do! Even though it didn't seem to reset once set previously.... I think its a silly system anyway though. If I wanted a password I would set one up... if not then I should be able to have my phone set up so that only the email needs that lockout password added so sync not the whole blasted phone!
adamelphick said:
I think its a silly system anyway though. If I wanted a password I would set one up... if not then I should be able to have my phone set up so that only the email needs that lockout password added so sync not the whole blasted phone!
Click to expand...
Click to collapse
I'm sure your IT department have a totally different answer to that!
You're walking round with potentially confidential company information in your pocket. Personally I think it's perfectly reasonable that they insist that you have to password protect your device so that if it is lost or stolen, no-one can get at the sensitive company information that you may have on the device, even if it is only out of your sight for a couple of minutes!
As it is an Operating System on our phones there's no reason MS couldn't have passworded EMAIL separately from other functions - makes sense to me. They give you the option to PW your phone or not (personal choice) but I agree that company information should be safeguarded.
Do blackberry's have this same password stuff that locks the phone completely? I don't see my boss having to type in passwords to unlock his blackberry every five minutes!
adamelphick said:
As it is an Operating System on our phones there's no reason MS couldn't have passworded EMAIL separately from other functions - makes sense to me. They give you the option to PW your phone or not (personal choice) but I agree that company information should be safeguarded.
Do blackberry's have this same password stuff that locks the phone completely? I don't see my boss having to type in passwords to unlock his blackberry every five minutes!
Click to expand...
Click to collapse
Yes, Blackberries do this as well. It depends on your corporate security polcies. We cannot connect iPhones or Nokia mail for exchange phones, as our IT group cannot broadcast the security policy to the device. These security policies are the main reason why BB and WinMo own the enterprise market in the US.
Hi,
several persons in our company (including me), who are using WM 6.5 (cooked ROM) and connecting to company's Exchange server via Exchange active sync (e-mails are on server) reported that suddenly this message appears on the phone:
"All information on this device will be erased after the next unsuccessful password attempt"
It is not possible to enter password and do anything with phone (just reboot). Funny is, that nobody did any attempt to enter password before - phone was just lying on table and this happened.
After reboot hard reset on device is performed and also memory card was wiped.
If somebody has same experience - just write here, maybe there will be some solution in future.
And note - if this happens to you, before reboot remove your storage card - it will be erased
Info:
IPAQ 614c, ROM WWE 21215(5.01) from here:
http://forum.xda-developers.com/showthread.php?t=496283
Company policy - forced password.
This has happened to me twice now, once when i was about to go on holiday, of course wiping the 8GB's os music on my card, and again last night.
It really is a problem, at first i thought it was some malicious b*stard at work, but now i think it's an issue with the rom.
I'm going back to 6.1, can't handle this happening every other week.
Artemis P3300 running different 6.5 cooked roms.
Cheers!
There is possible solution - when such message appears, do not press anything just remove batery - we have simulated it once and phone remained unerased.
If anybody can confirm this just give me a message.
z
I can confirm workaround - it worked for several my cloeqes.
Why is this happening still remains secreat.
Maybe solution to mysterious "...unsuccessful password attempt"
I was having this issue exactly as described in the first post frequently. I may have stumbled across a solution. Turn-off Showaco's TitaniumWeather.
Go to TitaniumWeather Options;
- check "Use On/Off Time:" set "On Time" and "Off Time" to 0
- uncheck "Enable Auto Updates"
- Save/Exit, then soft reset
It's been 3 days and I haven't experienced this issue since. It could be a coincidence, but worth a try... maybe others can help verify.
Hi,
this may be a solution for you, but not for us, because nobody is using Showaco's TitaniumWeather. We (3 phones) are using SPB Weather and there is no such settng.
z
I've been experiencing this problem on almost every cooked 6.5 rom I've tried on my Raphael/Touch Pro. As far as I know the exchange server has to be configured for remote wipe and enforce hard security for this to happen. Unfortunally most of the chefs arent working for companies which are as paranoid as mine (and yours) which meens they are quite unaware of the problem.
This problem might be connected to the Activesync "85010013" error when trying to sync for the first time. The "85010013" problem has to do with some security registry settings that are wrong in most 6.5 roms used by the chefs.
Mine has happened twice in the last three days. I'm syncing with a BETA Exchange 2010 server which is pushing typical security settings (wipe threshhold, mandatory screenlock...) Both times occured after the phone was lying around locked (auto screen lock set at 15 minutes) for a while. When I attempted to unlock the first time, the PIN keypad would only take two digits then I'd get a wrong PIN message before entering the reaminig digits or even hitting enter. After 8 attempts at this, the device wiped. The second time, the phone wouldn't even let me enter in the PIN, but said it was going to wipe because I had exceeded the maximum incorrect entries. I'm starting to think the TF3D2 keypad is part of the problem when the device wakes and asks for the PIN. I've set the PIN keypad to classic as opposed to default and set the auto lockout to 24 hours. Once I finish backing up the Exchange sync settings and setting up my spare SD card, I'm going to set the lock time back to 15 minutes and see what happens.
Any solution to this problem?
Is there a solution to this problem? I am getting this about once a day. Thankfully it still allows me to enter the 10th password attempt, so I haven't experienced any data loss yet.
I am running a cooked rom with TitaniumWeather integrated and Exchange forced password. I disabled TitaniumWeather updates; it didn't have the On Time/Off Time options.
KriekV said:
I was having this issue exactly as described in the first post frequently. I may have stumbled across a solution. Turn-off Showaco's TitaniumWeather.
Go to TitaniumWeather Options;
- check "Use On/Off Time:" set "On Time" and "Off Time" to 0
- uncheck "Enable Auto Updates"
- Save/Exit, then soft reset
It's been 3 days and I haven't experienced this issue since. It could be a coincidence, but worth a try... maybe others can help verify.
Click to expand...
Click to collapse
Twice this has happened to me. One time it happened in the middle of me using the internet, the second time it was just laying on the table. I believe the issue is a 6.5 issue, since it never happened before I upgraded. I also use Microsoft Exchange. That also seems to be part of the issue. PLEASE HELP!
Hoping you can help. I've become 'the phone guy' at my office (i'm already one of the 'desktop guy's'), and as such i have to help with our various Touch's, Diamond's, Touch Pro's, Touch Pro 2's, HD2's and even the occasional Treo (plus E71's, E72's and most of the Blackberry range).
Most of it i've figured out, having been around Winmo since the QTEK 9100, but there's one issue that has escaped me. Outlook/email/activesync, whatever you refer to it as on the device.
All our smartphone users (except the BB's) connect via an exchange connection. But i've found that if you hose up the setup (mis-spelling the server name, user name, domain, etc) without realising it and then try and connect, obviously you don't connect but when you find the error and correct it, the device still won't connect until you do a hard reset and set it up again.
In addition, our AD policy requires a password change every 60 days. Too often, even when the user knows how to update the password in WinMo Outlook, it gets hosed up, and we have to hard reset (again). 60 days is plenty of time for some users to have installed plenty of extra apps, so its always enjoyable to explain that we have to hard reset the phone....
Yes, normally i'd expect to 'right click' "*Outlook E-mail" and select 'Delete', but that's always greyed out.
So, how can you delete the outlook account settings without having to hard reset the phone?
Thanks.
Never mind, i found the answer.
Open Activesync on your smartphone and click Menu - Options. Selct your account and click Menu again and select Delete.
lol yip that was gonna be my advise to you lol, well done!