Dear All,
I've a serious problem with the lock feature in my HD. I access my work's e-mail through Exchange Server account. Once I synced it and it forced a password to be used as security the lock feature cannot be used!!!
Anybody knows how to fix this issue??
I suppose that what you mean is that the lock is disabled / enabled and it's impossible to change that?
That's because exchange server is forcing security policy to your device - you can bypass it by editing registry, but it will come back after every synchronization with exchange server so it's not really a sensible solution and I didn't hear about anything else...well you may force your admins to change security policy but I bet they won't do it
One more thing - in active sync there's an option to not force security policy but I don't know if it works - I've stopped using exchange server and I'm just synchronizing with outlook directly.
Hi Fadi,
maybe this will help (I know it worked for me..)
http://www.zenyee.com/2008/10/19/stay-unlock-goes-20-after-two-years/
But I wouldn't tell it your security administrators if I were you
peter_65 said:
Hi Fadi,
maybe this will help (I know it worked for me..)
http://www.zenyee.com/2008/10/19/stay-unlock-goes-20-after-two-years/
But I wouldn't tell it your security administrators if I were you
Click to expand...
Click to collapse
Thank you peter, will check and feed you back
kalbit said:
I suppose that what you mean is that the lock is disabled / enabled and it's impossible to change that?
That's because exchange server is forcing security policy to your device - you can bypass it by editing registry, but it will come back after every synchronization with exchange server so it's not really a sensible solution and I didn't hear about anything else...well you may force your admins to change security policy but I bet they won't do it
One more thing - in active sync there's an option to not force security policy but I don't know if it works - I've stopped using exchange server and I'm just synchronizing with outlook directly.
Click to expand...
Click to collapse
Thank you for your illustration
Or you could try this... it worked for me..
http://blogs.microsoft.co.il/blogs/...curity-policy-for-windows-mobile-devices.aspx
Related
When I set up an exchange account the phone ask me to set a password. Now every time I turn on my phone it or wake it up it asks me to enter the password. How do I remove the password???
If you were forced to set a password when you set up exchange activesync then the password is enforced, you can't remove the need for a password as long as you sync to that server.
The IT policy is set by whoever administers the server for all connected devices, most companies would use that setting for example to protect their data.
Who is hosting your exchange? Is it a work account?
It's 1&1. I really wish i knew that before i bought. Everytime I wake up the phone I have to put in a darn code. Is there any way around this? Very annoying.
Only way around it is to remove the exchange connection.
It's a server-wide policy - to cope for some users needing passwords, maybe even their own staff it will have been set up.
I'd stick with it personally, the device is more secure when lost with it enabled... I carry a wizard and Blackberry - both need password entry but I'm used to it
This week end I tried to sync my oulook mailbox and it asked me to accept new security policy.
It was in fact my company that upgraded to latest Outlook mail server with push functionality.
I was very happy and push is working fine.
But now I also have this annoying Pin code to enter every hour.
Also even when I entered the code and I am free to use my phone during one hour, I noticed that each time I turn it on I have a blank screen for 1 seconde before it loads the today page slowly.
This password feature is not nice at all and I really want to get rid of it.
I am pretty sure we will be able to find some regkey to unlock this stupid security policy like in HKLM\security\Policies\Policies.
It has to be a user choice in the end.
Do you know if I stop syncing with my server if i can remove it?
no, as I've said twice already, if you're using exchange activesync then this policy is enforced.
It's not user choice, if you're syncing your device with your employers equpment it's their data, they're legally entitled to protect it. If you're syncing with a third party server then the device will do as its told... the server is considered authorative - the same is true of Blackberry.
If you can find a way to alter the policy the checksum of your settings will differ to that stored on exchange, when the device next syncs it will see the change in policy and enforce the correct settings, turning the security back on.
Seriously guys, if you want exchange activesync then live with the policy , if you don't then disable the server connection.
remove the activesync service then yes you should be able to edit again to disable.
of course the thing mentioned above is not a solution...
i'm hal-way there and spoke with the rom makers to find a complete solution...this one is just temparary...
SeanH said:
I have been using a registry hack everyday to prevent my WM5 device from locking itself every 30 minutes. At around 7:00pm the company I work for forces a policy to my device using push email. At that time I open a registry editor and modify \hklm\security\policies\policies\00001023 from 0 to 1. That prevents the unit from asking for a password for 24 hours.
Click to expand...
Click to collapse
good luck
remen said:
of course the thing mentioned above is not a solution...
i'm hal-way there and spoke with the rom makers to find a complete solution...this one is just temparary...
good luck
Click to expand...
Click to collapse
I've decided I'm not going to be able to help on this one. It's your company's choice to enforce that security policy and not mine to help you get around it. I'm not being rude, I'm just not able to put time into research to do that at this moment.
Good luck.
Ok this may sound really dumb but I was messing with my MDA last night and set up Exchange Activesync to sync with my work email.
Apparently the email admins (not known to me) enabled the device password policy. After I deleted my exchange activesync settings, the password setting is still there!
Yes, I already tried going into the "lock/password" setting option in the control panel but since the security feature was enabled through the Exchange policy, those options to remove them are grayed out!
Does anyone know of a way to remove this? I'm assuming there MUST be some registry settings I can edit??
I tried playing around with the registry but I'm not that familar with WM 5 registry so I didn't want to mess it up further.
Any help would be GREATLY appreciated!
Device Reset? That's what I did with my MotoQ. I think it is a registry setting though.
I was not able to find info anywhere on MS site how to reverse the darn thing. Even when I removed the policy from the Exchange system testing security settings, it would still prompt for the password.
Let us know.
I have the exact same problem. My device now locks after 1 minute, extremely annoying.
Does anybody have an answer to this problem?
Thanks in advance.
Well... what about talking to the exchange admin and find out the password?
I think you should ask to your exchange admin to remove security policies for your account and resync it !
Have you ever considered WHY there is a password policy enforced?
Maybe to secure the device when left unattended?
And there MUST be a policy enforced to enable a pushed remote wipe, in case you lose the darn thing.
In that case a password policy is the most simple way to do this.
I'm an Exchange Admin myself, and I also enforce a password policy.
So I guess they wont help you with removing.
And even when you remove it via the registry, and you sync it again directly with the server, the policy is enforced again.
So you end up with a device you cannot sync again with your work email.
But a lock policy of 1 minute is harassing somebody, it must be a mistake.
In that case you should contact the exchange admins.
It turned out to be a misclick by myself during the setup. Because I changed the password of my exchange account, I was asked if I wanted a password on my mobile device (according to the exchange admin). Unfortunately I clicked 'yes' en 'next' to fast, leaving me with a device that locked after a minute. Problem was 'solved' by a hard reset.
I suffer from this a whole day even after asking my Exchange admin to turn of that security policy on the server.
Finally I reach a clean solution:
go HKLM\controlpanel\password
turn Dword:HintCounter from 0 to 1
going back to setting-password, now the grayed options return to black.
huangyz said:
I suffer from this a whole day even after asking my Exchange admin to turn of that security policy on the server.
Finally I reach a clean solution:
go HKLM\controlpanel\password
turn Dword:HintCounter from 0 to 1
going back to setting-password, now the grayed options return to black.
Click to expand...
Click to collapse
sadly enough, this doen't work for me...
i also got the pushed policy from the microsoft exchange server so i NEED TO HAVE the $%^&$ password, onterwise when i'm configuring the pushmail it won't accept.
if it was just entering the password it would be okay but it seems that when i use the ''password lock fuction'' and push it on stand-by and back on again the today screen quickly show's to turn black again and sort of reload the page (this hapens in about one second).
and when i don't use the ''password lock fuction'' this doen't happen, so it's clearly the ''lock fuction'' that's causing it.
now how can I disable the password?? i know that normaly you can do this by disabeling this in the menu, but it's turned gray cause of the pushed policy i gues...
and i got the wake-up problem too, but that's also solved when the password is removed... :S
for the rest i can only say, REALY GOOD WORK, and that count's for al,most everything here, i'm really satisfied with my wm6 busniess edition, it rock's!!accept for the thing mentioned above...who can help me out??is there another register tweak to disable the lock?? thanks in advandce and excuse me for my bad english
grtzz
Remen (from the netherlands)
I tried to set up ActiveSync/Direct Push on my 8525 to sync my corporate email without needing a laptop. I seemed to have gotten part way through the process:
The server pushed to me the new password policy complete with x-digit requirement and x-minute timeout.
When it came time to sync, it bombed (I tried another device - I just think my company doesn't allow ActiveSync).
I'm convinced IT isn't supporting that feature,
Problem - HOW DO I GET RID OF THE PASSWORD POLICY! I'd like to go back to my plain 4 digit PIN with the big keypad. I see some reg entries that must be associated, but I'm not sure.
I did a search on the forums, but didn't find anything. I appologize if this a newbie post ...
AFAIK there is no easy way to do this other than hard resetting the device. I had the same problem I had to hard reset it.
I could be wrong.. but from what i have read the password policy is set on the server and not the phone.. you would probably have better luck talking to your IT people than editing the policy on the phone..
shogunmark said:
I could be wrong.. but from what i have read the password policy is set on the server and not the phone.. you would probably have better luck talking to your IT people than editing the policy on the phone..
Click to expand...
Click to collapse
It is definitely set on the phone. It has to be disabled on the Exchange server before you can remove it from your phone. Once it's disabled on the Exchange server it requires a soft-reset before you can remove the lock.
Hi,
I have the same problem on my trinity ;-)
I delete the exchange server in activesync but security et here :-(
I found the solution :
"
Originally Posted by SeanH
I have been using a registry hack everyday to prevent my WM5 device from locking itself every 30 minutes. At around 7:00pm the company I work for forces a policy to my device using push email. At that time I open a registry editor and modify \hklm\security\policies\policies\00001023 from 0 to 1. That prevents the unit from asking for a password for 24 hours."
I had this problem on the HTC Kaiser as well; the SeanH solution works like a charm! The tick mark is NO longer grayed out!
Thanks!
006fazer said:
Hi,
I have the same problem on my trinity ;-)
I delete the exchange server in activesync but security et here :-(
I found the solution :
"
Originally Posted by SeanH
I have been using a registry hack everyday to prevent my WM5 device from locking itself every 30 minutes. At around 7:00pm the company I work for forces a policy to my device using push email. At that time I open a registry editor and modify \hklm\security\policies\policies\00001023 from 0 to 1. That prevents the unit from asking for a password for 24 hours."
Click to expand...
Click to collapse
Hello to all.
I am using X1 with Dutch Tmobile.
One of the steps to complete setup for exchange account was providing lock pin/password, this was obligatory.
The problem i have now is that I can not disable it. Checkbox is greyed out and I can only change: lock time (0, 3, 5) and password itself.
I am really happy with Exchange acces from X1 but pin is really annoying.
Any help appreciated.
Cheers
gruczniak said:
Hello to all.
I am using X1 with Dutch Tmobile.
One of the steps to complete setup for exchange account was providing lock pin/password, this was obligatory.
The problem i have now is that I can not disable it. Checkbox is greyed out and I can only change: lock time (0, 3, 5) and password itself.
I am really happy with Exchange acces from X1 but pin is really annoying.
Any help appreciated.
Cheers
Click to expand...
Click to collapse
I have the same problem which is really anoying especially when using Tomtom as I have to type in my password every 5 minutes whilst driving.
From what I have been able to find out, it is caused by the policies on your server/exchange server, where for company information security reasons it requires a password and prohibits the phone user to dissable this function.
To change this, a change in windows server or exchange server is necessary.
If anybody can post instructions on how to do this I would be most grateful.
In Exchange 2003 SP2
You need to open system manager and click the + sign next to global settings. Now right click on mobile settings and select properties.
In the dialog box that has appeared click on device security and then u will have several options to do with the device pin code.
Enjoy.
scotjen1 said:
In Exchange 2003 SP2
You need to open system manager and click the + sign next to global settings. Now right click on mobile settings and select properties.
In the dialog box that has appeared click on device security and then u will have several options to do with the device pin code.
Enjoy.
Click to expand...
Click to collapse
Thanks for pointing me in the right direction.
In exchange 2007, start Exchange Management Console, navigate to Organisation Configuration/Client Access/Mailbox Policy Server. Double click, select Password tab and uncheck require password. Sync with active sync and then you can remove the password.
Huge thanks for that! It has been bugging the hell out of me. Am using Small Business Server 2008 and it does all these settings automatically so I had no clue where to look.
Saddly for me my organization is to big to alter anything on the Exchange server.
Exchange policy update is still a workaround when you do not sync for some time (vacation etc)
Hi,
I configured our exchange server for corporate push mail on my Galaxy Note with March 2012 firmware. There's "optional encryption" requirement in the policy, where Exchange server ask for encryption if the device supports it.
Since Galaxy Note supports encryption, it enabled the encryption and asked me for a password.
Now, each time the screen locks, I have to enter a complicated password (consisting of characters, digits & a special character!) to unlock it! The phone became very unusable!
I understood from the post of "Eviip" in the page below that this is actually a requirement from Samsung side when you enable encryption, since my Exchange policy definitely does not require this. All other colleagues with Androids that can't do encryption or using iPhone's can just type a 4-digit pin code and use their phones.
http://www.google.com/support/forum/p/Google+Mobile/thread?tid=6355566b726a0932&hl=en
Is there anything I can do for this, except buying a 3rd party mail application?
Weird, because as far add I understand it GB doesn't support device encryption, only ICS does...
What ROM are you running?
Also, did the exchange policy configure the encryption or did you do it? Because as I understand it the exchange policies don't demand device encryption, just mail stream encryption (but I'll look into that further) and that is pretty innocuous stuff...
Sent from my GT-N7000 using Tapatalk
I see the same behaviour (gNote running 2.3.6 XXLA6; ActiveSync / Exchange Server 2007 SP2). With ActiveSync policy pushed through to device, I have to use strong password to unlock, even though the policy only calls for 4-digit PIN.
I'm using TouchDown mail client as a workaround (at least for the next 30 days) but hoping the ICS update due out "soon" will fix the "problem".
Is there any feedback avenue to Samsung regarding this "feature"?
thomas_d_j said:
I see the same behaviour (gNote running 2.3.6 XXLA6; ActiveSync / Exchange Server 2007 SP2). With ActiveSync policy pushed through to device, I have to use strong password to unlock, even though the policy only calls for 4-digit PIN.
I'm using TouchDown mail client as a workaround (at least for the next 30 days) but hoping the ICS update due out "soon" will fix the "problem".
Is there any feedback avenue to Samsung regarding this "feature"?
Click to expand...
Click to collapse
touchdown is no option for me, because it supports 2 different exchange accounts at a time only with "profiles", which is unusable for me!
regarding your problem: i know for sure that there were some hacks for this (a modified apk which doesn't incorporate the lock requirements. the downside is: with every rom upgrade you would have to redo this hack, as the mentioned apk may change in the system itself to a newer version...
Yeah, same to me
I 've update to 4.0.3 ICS but now I want to no use password or PIN for unlock screen mean that can I not use my exchange policy? (cause my GN haven't any privacy data to secure
so can you show for me? thanks!
I finally gave up with this and used the patch that I found in the forums (for rooted phones). It works pretty well!
http://forum.xda-developers.com/showthread.php?t=1117452