Related
So here's the situation. I've got a Sprint Hero. I rooted it and installed MoDaCo, and everything was fine. Then I got this spedr.com/1iw9z beta 2.1 ROM just to try out (This ROM doesn't have copy protect apps working).
The problem arose when I went back to my Nandroid backup of MoDaCo (and my backup of the Stock ROM for that matter.) When I did that I couldn't access any protected apps on either stock or MoDaCo.
I thought that maybe this was from the 2.1 ROM but when I wiped and signed in with another GMail account I could view protected apps.
So all that is to say. Has anybody else experienced this problem and if so have you found a way to fix it? I'm thinking about contacting Google, but if they did blacklist my account there may not be much of a point, besides making sure I never get my account unblocked.
ipaq3115 said:
So here's the situation. I've got a Sprint Hero. I rooted it and installed MoDaCo, and everything was fine. Then I got this spedr.com/1iw9z beta 2.1 ROM just to try out (This ROM doesn't have copy protect apps working).
The problem arose when I went back to my Nandroid backup of MoDaCo (and my backup of the Stock ROM for that matter.) When I did that I couldn't access any protected apps on either stock or MoDaCo.
I thought that maybe this was from the 2.1 ROM but when I wiped and signed in with another GMail account I could view protected apps.
So all that is to say. Has anybody else experienced this problem and if so have you found a way to fix it? I'm thinking about contacting Google, but if they did blacklist my account there may not be much of a point, besides making sure I never get my account unblocked.
Click to expand...
Click to collapse
I am not aware of Google blacklisting people, so it's likely a bug. Calling them up might not resolve any problems since they're not bound to helping you if you've broken the warranty on your phone by rooting it, but it can't hurt.
Must be a bug, as mer6 suggested...
I've been running 2.1 ROMs (xROM & CaNNoN202 Complete) on my G1 for a couple weeks and my GMail account has not been locked out.
you have to do a complete wipe and reinstall a rom with all protected apps working...
sometimes its just a screw up
worst comes to worst if u cant get ur apps back...
u can change build.prop files if u knwo how to do all that
or just reset it to stock and sign into the market and then root it again
Yeah, I was inclined to think it was a bug because I haven't been able to find many othere people with the same problem. The thing is I've reflashed MoDaCo 2.2 Fresh 1.1 and I even went back to the latest RUU and tryed to get protected apps before I rooted again and there was still nothing. It doesn't seem like you would be able to get a bug in your Gmail account that would do something like this but I'm not very experianced with all this.
Signing in with another account after a wipe will fix the problem but I've got a few paid apps on this account I'd like to keep.
Changing the build.prop sounds like it might work, can you point me to any places that give any info on that? I've looked around some but so far I haven't seen much.
I doubt if google even cares. After all, they never manufactured any hardware nor do they care on where you use your gmail.
You may use your gmail account while riding a pink pony over the rainbow, for all that they care.
Haha, good point ady.
I think you are right because I just booted up my G1, something I should have already done, with King's 2.1 aosp on it, signed into my account and I can see protected apps.
So now I think I am down to a bug... now to see if I can fix it
If anybody has info on the build.prop file editing that would be helpful, going to look for it some more right now.
Just a quick update for anyone who is interested.
I changed the build.prop file but that didn't work, but just today I thought I would try another 2.1 ROM just for kicks. Sure enough, I flashed damagecontrol and all of my protected apps are back. Strange issue but I don't mind sticking with 2.1 I may go back to a 1.5 ROM just to see if damage control fixed something, or if it is uniqe to 1.5, but for now: Problem solved
This has nothing to do with Google blacklisting Gmail accounts. What's happened is your Market DB has gone out of sync from swapping your account between phones with different apps installed. The DB glitches if your phone and/or account says an app is installed but the apk isn't in /data/app.
It's a known bug on Google Support forums. To avoid I make sure I only have my Google account signed in on one phone at once and do not swap back. Always perform a wipe when changing ROMs. Keeping backups of your APKs with AppManager and using Recovery to both "wipe dalvik-cache" and "fix apk uid mismatch" could be used to solve this, maybe not.
We've all been running rooted phones for ages, Google doesn't care about it.
There is a simple workaround on rooted phones for the Exchange security policy without having to replace the original mail app. I also posted this in the Android 2.2 Email.apk - Bypassing Exchange security policy - APK Attached thread in the Evo forum and am making a new thread here in case people have missed this very simple workaround. I am using it on an account on a Exchange 2007 server and I believe Exchange 2003 works as well. I heard from one person who did not have good results with Exchange 2010. All exchange functions work fine without any issues. I am using the stock email app so this only applies to the stock email app that forces a password security policy.
I am using an app called Autostarts found in the market (less than a dollar - I am not the developer) that allows disabling the exchange policy on restart. The setting can be found under Device Admin Enabled. Make sure you are in USB Debugging Mode before disabling the policy.
If you already have an Exchange account set up yet:
Install Autostarts from the Android Market and run. Find and click the Device Admin Enabled entry and press Mail (Exchange security policies) and select Disable (acknowledge the warning about disabling a system component). Close Autostarts and reboot the phone. After restart, change your screen lock under security to whatever you want (None, Pattern, or PIN).
If you don't have an Exchange account set up yet:
Install Autostarts from the Android Market then set up your Exchange account and let Exchange force the password policy. After the exchange setup is completed, run Autostarts and find and click the Device Admin Enabled entry and press Mail (Exchange security policies) and select Disable (acknowledge the warning about disabling a system component). Close Autostarts and reboot the phone. After restart, change your screen lock under security to whatever you want (None, Pattern, or PIN).
Is there any freeware tools?
Hi,
Thanks for posting. Is there any freeware tools available for this purpose??
Thanks
I just installed the program and then realized you need to have your phone rooted. How would I do that and what are the effects of rooting the phone? This is the easiest option I have seen so far depending on what has to be done to the phone to make it work.
It would also be nice to shut down all those horrible programs that keep restarting that I never use.
Thanks
Works on 3.70 kernel Fresh ROM 3.5.0.1
I am running fresh 3.5.0.1 on my HTC Evo and this method worked for removing the Exchange security pin requirement. My company uses Exchange 2007.
UPDATE:
My phone started prompting me that my server requires the security profile. It won't refresh the email account unless I turn it back on.
thanks for the awesome work!!
forceOnature said:
I am running fresh 3.5.0.1 on my HTC Evo and this method worked for removing the Exchange security pin requirement. My company uses Exchange 2007.
UPDATE:
My phone started prompting me that my server requires the security profile. It won't refresh the email account unless I turn it back on.
Click to expand...
Click to collapse
I also started getting the warning after upgrading to roms based on 3.70. The workaround still works for those on the earlier roms. I'll see if there is any other graceful way around it.
Sent from my EVO using XDA App
I don't see the Device Admin Enabled entry in AutoStarts. Am I missing something? I've enabled the USB debugging and I'm running a rooted Captivate/Galaxy S.
Thanks,
Landon
I don't know if it's part of the HTC sense or android framework.
Sent from my Evo using XDA App
This isn't a good solution...although you can disable the remote admin, the corporate exchange account alerts you that "security policy needs to be updated"...thus you can't check emails...
So after posting I got off the stock ATT rom and installed the Cognition 2.3 rom. Everything was great after that and worked like a champ. I just tried upgrading to Cognition 3.0 and the fix here broke again. I'd rather stay archaic and not have that dang password than run the latest and greatest and have to deal with it. When you guys are saying your running 3.5 and 3.7 what are you referring to?
Thanks,
Landon.
I knew I should have waited before posting...
I reinstalled Cognition 3.0 on my Captivate and tried the email.apk here.
http://forum.xda-developers.com/showthread.php?t=729753
Worked great again and didn't need autostarts. Woohoo!
Landon.
Loophole closed?
It would *appear* that Google closed this loophole, perhaps in Gingerbread? I just tried the latest MIUI and WarmZ ROMs (both of which are GB based, AFAIK). While this still enables the option to change from PIN to pattern or none under security, as soon as the next sync I am re-prompted about the policy, and if I accept it re-enables the setting in autostarts. I switched back to IncROM which is 2.2 and this procedure still works. If this loophole was indeed closed I am so bummed. I'd rather forgo using Exchange entirely than put up with a freaking 8-digit PIN every 15 minutes. And I can't seem to find a Mail.apk for Sense that has been modded to bypass this stringent policy. Blackberry users on the same Exchange server don't have to unlock their phone all day long, so why does Android's default behavior require this?
(I'm on an HTC Incredible)
+1. Agree with Stretch2m.
Really annoying have to enter pin code every 5 minutes or so. Especially when I'm in a hurry to access e-mail or other stuff...
Anyone out there who can assist with GB 2.3.3
Please help!
I am on an Epic with Syndicate frozen 1.1.0.... i enabled corporate exchange sync and it made me install the pin lock - which i want to disable...
Please can you post - NOOB version of the directions and also if anyone knows if this works on Epic with this custom ROM.
THANKS!
I am in need for some despirate help! Let me start first with the problem. I am running CM6.1.1 and am unable to connect to my exchange email. When I fill the appropriate boxes with the correct information, I get an error saying:
"Setup could not finish
This server requires security features your phone does not support"
So my question is what security features is the evo missing? I was able to set up my exchange email without any problems on sense roms.
So now here is what I have done to trouble shoot and alleviate this problem. I have checked both boxes on the setup page "use secure connection" and "accept all SSL certificates" still no go. I have installed numerous different versions including a 2.1 version, 2.2 version, and then 3-4 versions with the security bypass. Still nothin. I have also tried improved email from the market, and you guessed it. Still nothin. lol I just want the stock email app to work for me. I don't mind the security features that come along with exchange either as long as it works.
I was using the trial version of touchdown for a while.. It worked. But I didn't really like the app and I don't want to pay 20 bucks for an email app.
So now Im going for the hail mary... One last try to find someone that may have the answer I'm looking for! Do any of you fellow friends out there know of a possible fix?
By the way I am on exchange 2007.
Thanks for reading!!
this is a known error with googles AOSP mail app which CM, MIUI and any other AOSP based ROM uses. currently only sense ROM's (I recommend MYN's,Calks,Fresh) mail app works with additional security features. My suggestion is to either download an app like touchdown (paid) or NAND your CM setup and flash any of those SENSE roms and wait for 2.3 to come out which i believe will work better with secure exchange environments
wrapkgb said:
I am in need for some despirate help! Let me start first with the problem. I am running CM6.1.1 and am unable to connect to my exchange email. When I fill the appropriate boxes with the correct information, I get an error saying:
"Setup could not finish
This server requires security features your phone does not support"
So my question is what security features is the evo missing? I was able to set up my exchange email without any problems on sense roms.
So now here is what I have done to trouble shoot and alleviate this problem. I have checked both boxes on the setup page "use secure connection" and "accept all SSL certificates" still no go. I have installed numerous different versions including a 2.1 version, 2.2 version, and then 3-4 versions with the security bypass. Still nothin. I have also tried improved email from the market, and you guessed it. Still nothin. lol I just want the stock email app to work for me. I don't mind the security features that come along with exchange either as long as it works.
I was using the trial version of touchdown for a while.. It worked. But I didn't really like the app and I don't want to pay 20 bucks for an email app.
So now Im going for the hail mary... One last try to find someone that may have the answer I'm looking for! Do any of you fellow friends out there know of a possible fix?
By the way I am on exchange 2007.
Thanks for reading!!
Click to expand...
Click to collapse
That's what I was afraid of... I don't think I could bear going back to a sense based rom lol... I've been running cm since before 6.1. Im just getting tired of logging online to check my mail! well it looks like ill have to live with it for a little while longer. Thanks for the reply!
no problem, you can't go wrong with Myn, calk or any of the well supported sense roms and you might actually like it the horrors
wrapkgb said:
That's what I was afraid of... I don't think I could bear going back to a sense based rom lol... I've been running cm since before 6.1. Im just getting tired of logging online to check my mail! well it looks like ill have to live with it for a little while longer. Thanks for the reply!
Click to expand...
Click to collapse
did you try typing outlook. whatever your site is named plus add you domain. it works for me, but the yahoo won't work
Does the T-Mobile G2x come with the Carrier IQ rootkit installed? If so, I'd like to block it. I'm running a rooted Android 2.2.2 (I like the camera) and don't want to do anything that would prevent me from possibly upgrading to ICS should it become available. So where do the stock rom users stand?
-roadtrip72-
I would also like some more information on this. I'm running CM7, but what of the other stockish ROMs? Is this something that is removed by the devs?
Well they did have LogMeIn apps installed in the stock roms, but didn't have actual launcher icons for them... kinda scary.
CM7 based roms won't have anything like this installed as they are built from the ground up. Stock-based roms, which I don't think so, still could. Would be nice to get a real answer.
Ok so I have been researching this for the G2x and not really found much positive test results. I'm currently running 2.3.3 stock everything and I downloaded the apk from here: http://forum.xda-developers.com/showpost.php?p=17612559&postcount=110
From my results the main apk for ciq was not found and nothing ran nor was logged. So I guess no, the g2x stock doesnt have ciq installed. Anyone else confirm this?
Well you can always check and or get rid of the Carrier IQ thing that tracks your information.
You need a rooted phone to do so and then go here to download the app because it is not on the android market.
http://forum.xda-developers.com/show...&postcount=110
*Note: do a backup of your phone before you do this just incase. I haven't checked if its on our phones just yet but more than likely it probably is
**Update: Having trouble with the app on my g2x with stock rom/faux froyo kernel.05. It keeps giving an "Error copying Busybox" so the App won't update to the pro version that you need. Waiting for Dev response
Does not look to me like CiQ is on the 2.3.4 Rom, but it is possible it may be on the 2.3.3 Rom... Most concerned about LMIRescue.apk and LMIRescueSecurity.apk ... both of those are troubleshooting apps for T-Mobile which in the past has been suggested stands for "LogMeIn"... sounds a lot like ciq or similar. These files were not included in the 2.3.4 Tracfone leak. I have not, however, actually checked a running 2.3.3 with the tools TrevE offered. I did check my copy of the 2.3.4 and it did not find the CiQ service or binary. That is not to say it may not be obfuscated in such a way that TrevE's tool isn't aware of yet though.
However, one thing to note is that a couple of the app usage logs it pulls up I am pretty sure are NOT related to CiQ, and have been around in almost every build of Android since the beginning - specifically the log that tells how much time you've spent in each app. What is IMPORTANT is, is there an app on the phone that's sending the data. That, I can't say for sure.
I saw that article on CNN and was like effing great. After I rooted my phone and saw that logmein crap I froze that right away, lol. Somehow didn't sit with me. Android is great, but let me tell you do NOT trust Google and what they do. I am convinced there's something underlying and sinister about them.
Google=Android
Cell phone=giving up your privacy
I'm going to freeze that lmi crap thing now as well.
I garuantee the g2x has the ciq but its probably hidden or it IS somehow related to logmein. 1984 wasnt a story it was a prophecy. Scary indeed.
And I'm on stock froyo and rooted.
meh...
No CIQ in 2.3.4 but it collects usage stats and periodically sends them to Google. Not sure how to stop that behavior. Also, many of the apps in the Android market use Google's SDK to collect their own usage stats and the apps send them to the devs. They say it is to improve their apps. That is why most apps have permission for network data, even though the app doesn't require network data to work.
jboxer said:
No CIQ in 2.3.4 but it collects usage stats and periodically sends them to Google. Not sure how to stop that behavior. Also, many of the apps in the Android market use Google's SDK to collect their own usage stats and the apps send them to the devs. They say it is to improve their apps. That is why most apps have permission for network data, even though the app doesn't require network data to work.
Click to expand...
Click to collapse
Isn't there an opt out for Google analytics during the setup wizard that everyone skips when you first set up the phone after a wipe?
Sent from my LG-P999 using Tapatalk
just
Its A work around. But I install Lbe and droidwall or prdroid. With pdroid and Droidwall you can lock down pretty much all services (need root). Lbe is OK but not nearly as good as pdroid. This of course would be ideal for your random Apps that abuse internet use or private data
Howdy (and apologies ahead of time if this is a dup, I _did_ search, didn't find anything),
Is it just me or did application specific passwords break with Lollipop? Googled a bit and couldn't find any details. I just see postings stating that 2fa works now, but I don't see how that negates the need for app specific passwords.
I know 2fa is now supported but I'm a bit concerned to use my normal password as I'm not sure if it's stored in any way. Anyone know of any links that explain what exactly is stored and how the auth is persisted across reboots? Maybe I'm misunderstanding, but I thought that if my device was lost, with app passwords I could revoke the device without changing my main password.
The other issue is, since I'm using 2fa with the google auth app on this phone I wouldn't even be able to setup if I wiped this phone (which I will need to). At least prevously I could login to my google account on my PC, create the app specific password and sign on that way.
- TIA for any info
I have just upgraded my Nexus 5 from 4.4.4 into 5.0.1 (I didn't install 5.0.0). What I did:
1. Factory reset on 4.4.4
2. Install system update into 5.0.1
2. Factory reset on 5.0.1
3. Application specific password NOT accepted on initial account setup on Nexus 5. I had to use my master password and code list because you can't read sms before account is added on the phone.
Is this really broken? I haven't found any info on this either.
Wow, someone else who was using this feature. That makes 2 of us at least. I guess that's why they removed it...? Yeah, unless I'm missing something it appears it's indeed broken.
The best part is this isn't really part of Android, but part of gapps; no way to report bugs for that (at least that I've found). Someone opened a bug against AOSP but they closed it as this stuff isn't part of AOSP:
{scheme}code.google.com/p/android/issues/detail?id=57863&can=1&q=app%20specific%20password&colspec=ID%20Type%20Status%20Owner%20Summary%20Stars
They suggested using the "google mobile help forum"; I guess this page links to it: {scheme}googlemobile.blogspot.com/2008/11/got-questions-try-new-google-mobile.html - following the link just gives an error "no group mobile found" or something similar.
All I could see to do was to post a response to their help page on signing in with app specific password to Play pointing out the inaccuracy of the article. I can't find that article anymore, it looks like it might've been removed? I received no response to that.
I can't imagine this being a very difficult feature to support, so I'm a little surprised it was removed. But hey, at least they added all sorts of eye candy and other crap I don't really care about.
I think this is a deal breaker for me. Unless I'm misunderstanding here, if someone were to acquire my phone and extract the password the key or whatever it's storing, they would then be able to access my account settings and take full ownership. If it only had the app specific password, I don't think that'd allow them to modify security settings. If it's tieing the key to the device, that's great but I still can't revoke it (doesn't show up in the app specific password page). Unacceptable (again, unless I'm misunderstanding something?).
Maybe it's time to start looking for alternatives. Wonder if any Maemo derivatives can run on the M8? It was miles ahead of Android in all departments except eye candy anyways...
I'll reply here if I see any more info - please do the same.
This is totally broken.
My company uses App Specific Passwords and I just updated my Droid Turbo to Lollipop.
After the update, everything worked fine. However, I started getting google play service errors and had to wipe.
Now I need to log in using my authenticator password instead of my app specific password.
Not good
dragonash said:
This is totally broken.
My company uses App Specific Passwords and I just updated my Droid Turbo to Lollipop.
After the update, everything worked fine. However, I started getting google play service errors and had to wipe.
Now I need to log in using my authenticator password instead of my app specific password.
Not good
Click to expand...
Click to collapse
Agreed. Quite unfortunate, but I can't find anyone outside of this thread and a few random posts that seem to actually care.
Thanks for confirmation that this is still a problem, btw. I'm still not sure if there's anyplace to even raise this to Google...
i just spent an hour trying to understand why this smart feature wasn't working on my new mobile with a stock andorid lollipop! at least i feel less lonely now...
i sent a feedback to google even if i don't think they'll reply.. i opened a ticket on AOSP website (Issue 189310) if you want to check their reply.. sorry but i can't post outside links