[Q] Device Administrators - Galaxy 3 General

what is this ? Under
location and security there is a tab
called
select device administrators

Its support for enterprise applications by offering the Android Device Administration.
Eg. The the default email client application implements this. So if your email client connects to any enterprise exchange server. The exchange administrator forces some security policies like password/Pin to be used on your device. Also in case your device is stolen/lost the exchange administrator can remotely wipe to restore factory defaults.
Hope you got it !!!

one more thing it allows is
there are some apps which turn off your lockscreen nd lock the deivce during some call nd whn using a case and so on
it helps them

Related

Push email update

I've got all my details on how to connect to my Exchange server, however how do I get it to update as and when I receive new mail? At the moment I have to do it manually.
On the PDA, if you have filled in server, user name, password and domain thats all you need to do.
If you are not getting the email automatically I suspect its a setting issue on Exchange Server. Thats outside my experience, you are best posting a question on an MSDN forum related to Exchange
rgds
As colonel said, the settings themselves are very few and easy to input.
The major problem is:
Which settings do you need ?
This is highly dependent on the infrastructure "your" Exchange Server is located in.
Personally I would have been lost without the infos sent to me by the SysAdmin of our company.
BTW:
Is it really "your" Exchange Server or the one from your mobile operator or the company you are working in ?
If the former is the case: you should know the settings, because it is very risky running an Exchange Server without being familiar with it downto the bits. If the latter is the case you are lucky off: your (experienced) SysAdmin will be glad to tell you. If he doesn't the service will not be open for useing it and if you are in a company it's be advisable then not to try to bypass services not intended for internal use.
It's through a third-party. I have a copy of Exchange, but I don't currently have a Windows server to run it on.
Trapper, go to Activesync on your workstation and press the Schedule button. Select "When new items arrive" for both Peak and Offpeak times.
There are also settings within your user ID in Active Directory. Go to properties of your user ID and I think it is the Exchange Advanced tab. This will allow you to set the sync options from the server side. You will need to do this from your Windows server, or get your administrator to do it for you.
Trapper, go to Activesync on your workstation and press the Schedule button. Select "When new items arrive" for both Peak and Offpeak times.
There are also settings within your user ID in Active Directory. Go to properties of your user ID and I think it is the Exchange Advanced tab. This will allow you to set the sync options from the server side. You will need to do this from your Windows server, or get your administrator to do it for you.
If its through a 3rd party then they are responsible. Why don't you contact their support dept. ?
1. If its a professional company like 4smartphone.net or mail2web.com then their IT depts will help you.
2. If its a small company with an exchange server and a DSL connection who have 'gifted you' an account they will need to get 3rd party consultancy to solve this. There are a number of checks, for example is it exchange 2003 ? has SP2 been applied ? has push been setup in the server engine ? etc etc
My experience of server based systems is that you need an expert. If you want to become an expert yourself then fine, but that probably means many years in the business, reading loads of books and/or an MS certified course.
I have had so much experience over the years of people who claim to know about a system, tinkering around but not solving problems. You have to get the A-Team.

Exchange security policy

I've read a few threads after searchign on Android and Exchange but can't really find what I'm after.
I need to enforce a security policy if users want to sync their exchange account. There's a few people in the office who want Android devices (we provide them with a device) but until there's somethign which enforces something along the lines fo a PIN after 20 mins ala WinMo then we can't do it.
Anyone have any ideas if it's coming or if there's an app to do it? I've tried Touchdown but just seems the same as the Hero Exchange app to me.
I've not tried Touchdown, but they say they support PIN enforcement.
http://www.nitrodesk.com/dk_touchdownFeatures.aspx
Regards,
Dave
Yes, Touchdown and Roadsync both support the PIN function (they ignore it somehow, as android doesn't have a PIN function!)
although i do believe that it is technically possible to exclude individual accounts from the policy on the server (although not exactly the best idea in terms of security).
Alternatively, just do what we did at work and say 'No, you cannot have an Android Phone for your Work Phone'.
Since the ROM update on the HTC hero, I have been able to access my work email (a massive highly secured company who generally know what they are doing) and I know for a fact that they enforce this kind of security arangement on mobiles that want to connect - however android has somehow got around this and there is no remote enforcement and I can use my phone for these emails via PUSH. (I use the gesture lock as a password) You could get them to sign an agreement that they will apply this kind of thing to their phone manually. I don't know if there is an app for remote wipe.
Your company isn't allowing you in some backdoor or anything... depending on their version of exchange they are simply allowing you to use activesync through exchange.
What we all really need is an andriod client to take advantage of exchange 2007's exchange web services protocol, activesync is old technology and limited.
O.P. - You can limit users on a single user basis, if you're running windows active directory. Need a little more info on what you are trying to accomplish. If you're allowing them to use their mail client setup they are saving a password that is not clear text and is hashed... you can install a remote wipe on the phone and if they lose it, simply wipe it and forget it.

Google Apps for Domains and Email client

Anyone managed to get Exchange ActiveSync working on the Tab Email client with a Google Apps for Domains account?
I know my domain is set up correctly, because I can use ActiveSync support on my Desire with these accounts, but on the Tab although everything seems to be ok I do not get any email in my Inbox and in "Accounts & Sync" settings, there is only the option for Contacts and Calendar sync.
Regards,
Dave
Sent from my GT-P1000 using Tapatalk
exchange setup could not finish: Unable to connect server
Mine doesn't connect at all. When I checked at mail.mycompany.com phone option I see it already register but couldn't complete the registration but got access denied message on access state.
Anybody have this issue and know how to fixed it?
Below is the detail info from exchange server (2010 version):
Status: OK
First sync:
11/7/2010 5:34 PM
Last successful sync: Not Available
Folders synced: 0
Device name:
Not Available
Device model: Android
Phone number: Not Available
Mobile network: Not Available
Device type: Android
Device ID: validate
Device IMEI: Not Available
Device OS:
Not Available
Device language: Not Available
User agent: Android/0.3
Access state:
Access Denied
Access set by: Security Policy Application
Policy applied:
Default - Not applied
Policy updated: Not Available
ActiveSync version: 12.0
additional info
Sorry forgot to mention, I've also set to accept all SSL certificates. Still not working..
Somehow it works, but only one time and cannot redo
Just wanna update this thread. After hard reset for the third time suddenly the active sync connection is working and show a pop up of whether I want to continue being forced to have a security policy forced to Galaxy Tab.
It loads around 2 minutes, then goes to security setting and set screen lock.
After that the account sync!
When I try adding one more exchange account it fails with the above error message again.
A bug in the android mail app for pushed security policy, perhaps?
Make sure you have "Allow non-provisionable devices" checked in exchange.

Hacking to clear security settings created by lotus traveller

My company which uses lotus traveler to enable access to corporate mail and calendar on WM devices. I installed this on my HTC HD running WM6.5 (Dutty Leo ROM). The installation has forcing us to use strong alphanumeric passwords and also greyed out the "prompt if unused for" radio button where you would typically turn off the phone password locking. This has rendering the phone virtually unusable as it takes 3 mins to enter a strong alpha password each time you use the phone...brilliant!
Is there a hack/registry edit that I can use to un-grey this button so I can turn it off and start using my phone normally again.
Any suggestions would be appreciated...
It's probably not related to the Lotus Traveller itself, but with the company enforced policies included in the CAB file - I presume You got the CAB from the company, not the Lotus/IBM website. At least that was the case in our company, that they forced to use the simple PIN lock with Exchange sync - I was already bothered by the simple PIN, so I dropped the whole idea. But I suggest You take a look in the CAB file, if You can still get it and see what changes does it make in the registry. Or You can also ask from Your company IT guys about the WM policies they have to enforce, they should know.
Anyway, hope You have some directions to go now.
Thanks for the suggestions....
1) I tried removing the lotus traveler application - this had the effect of removing the security enforcement. I reinstalled it and it was enforced again.
2) The traveler application launches automatically when the phone boots up. So I removed it from the startup sequence. Unfortunately this did not solve the problem. So I think there must be a registry setting somewhere that is set and monitored by the application.
3) I also looked in the setup.xml file that was in the traveler.cab installation file. I could not find any registry mods that were related to security.
4) The traveler release notes say the following: Customizable device password strength enforcement rules!
Traveler provides a built-in set of default device preferences and security settings that an administrator can modify for use when a device initially registers with Lotus Notes Traveler. The default device settings for users come from the Traveler administration database default device settings document. Users can change their device preference settings from their devices, but only an Traveler administrator can change device security settings.
Suggestions?
In the last few days I have browsed the registry quite thoroughly and there doesn't appear to be key that controls whether radio buttons are active or not (greyed out). I was hoping to make the "prompt if unused for" radio button active again so I could manually switch it off.
I'm out of ideas....any suggestions pls
i have lotus traveler installed on my tp 2 i have flashed my phone many times and reinstalled lotus and have had no problems. can you post a screen shot.
Security Policy
Hi
I am a Notes admin and can confirm this is a polcy that has been set to secure company data on mobile devices. Most companies have a policy that requires company information/access be secured especially on things like mobile devices.
Think about it, your company email system would be available to anyone stealing or finding your phone. While this may not worry you, it could be a cause for concern for your company executives or auditors - and could be a compliance issue in many industries.
The policy is set on the email server itself and pushed down and enforced on the device so it cannot be bypassed.
To remove it or get a less secure PIN you will need to speak to your company Lotus Notes admin.
This is an issue I have seen before and can cause conflicts between employees who use their own phones and resent the way they use them being changed and those concerned with securing and protecting their company.
Hope that helps but the long and short is speak to your email admins. The security policy is not default so someone must have set it up that way for a reason.
MIUI used to have an option to disable the password option even when it is enabled/enforced by Notes Traveler. However the new versions of miui do not have this.
Check this link
http://miuiandroid.com/community/th...en-security-has-been-removed-fro-1-7-29.8941/
why not have the security measures focus on the app?
paulbenwell said:
Hi
I am a Notes admin and can confirm this is a polcy that has been set to secure company data on mobile devices. Most companies have a policy that requires company information/access be secured especially on things like mobile devices.
Think about it, your company email system would be available to anyone stealing or finding your phone. While this may not worry you, it could be a cause for concern for your company executives or auditors - and could be a compliance issue in many industries.
The policy is set on the email server itself and pushed down and enforced on the device so it cannot be bypassed.
To remove it or get a less secure PIN you will need to speak to your company Lotus Notes admin.
This is an issue I have seen before and can cause conflicts between employees who use their own phones and resent the way they use them being changed and those concerned with securing and protecting their company.
Hope that helps but the long and short is speak to your email admins. The security policy is not default so someone must have set it up that way for a reason.
Click to expand...
Click to collapse
so why not have the security measures focus on securing the app and the app data? personally, I don't mind the 24/7 emails...but making me lock my phone so the company can blow up my phone at 7pm on a sunday...LAME.
Are there any news? I would like to remove the LockScreen security and want to use ibm verse.

Add Exchange account to default Mail APP

I was trying to add my office Exchange account to the default mail app of Windows 8. (It's nothing compared to Outlook but just wanted to try this out)
Auto discover did his work and all the settings are filed in correctly.
Then i got this messange;
"Make my PC more secure
You must make your PC more secure to connect to this server. Windows will ensure that your PC complies with any server requirements, including password requirements, requiring sign-in after a specified period of inactivity, and limited the number of incorrect attempts to sign into your PC. Windows might also limit sign-in methods such as picture password."
Click to expand...
Click to collapse
It gave me the option to cancel or apply the security policy.
But what is it applying? I wanted to know what this is doing to my machine.
After searching allot of fora i found out what it does;
Your computer may not meet the Microsoft Exchange server’s security requirements. The most common reasons why your PC might not meet the Microsoft Exchange server’s security requirements for this account:
An administrator account on your PC doesn’t have a password. All administrator accounts must have a password.
To meet the security requirements, you can:
Set a password for all administrator accounts on your PC.
Remove administrator privileges for any administrator accounts on your PC that don’t have a password.
Remove any administrator accounts from your PC that don't have a password.
BitLocker couldn’t automatically be enabled on your PC. Enable it in Control Panel and then try connecting to your mail account again.
Your Microsoft Exchange server requires security policies that the Mail app can’t support. The Mail app supports the following Microsoft Exchange ActiveSync security policies:
Password required
Allow simple password
Minimum password length
Complex passwords
Password history
Enforce password history
Device encryption
Remote wipe
Click to expand...
Click to collapse
I just wanted to share this with you all for if someone was wondering the same.
Peace.

Categories

Resources