4.4 OTA breaks certificate-based authentication support - Moto X General

Just upgraded my device to OTA 4.4 and Exchange services crashed every time I opened Email (I kept getting a message "Unfortunately Exchange Services stopped" repeatedly).
After deleting both the email account and the user certificate (we use certificate-based email authentication), I am unable to re-add the Exchange account back (after defining all credentials and parameters, I get a popup that says "Couldn't finish. Can't connect to server."). Additionally, I see a white triangle with an exclamation point inside in the notification bar. When I pull the bar down, the exclamation bar has a caption of "Network may be monitored by an unknown third party". When I click on that caption, I get a new pop-up saying "Network monitoring. A third party is capable of monitoring your network activity, including emails, apps and secure web sites. A trusted credential installed on your device is making this possible". There is a button underneath called "Check trusted credentials" and clicking on that takes me to a "user" portion of the trusted credentials store, where I see my corporate CA certificates.
In general, the issue of certificates issued by a non-public CA generating a "Network may be monitored" message has already been documented in several forums and there is an issue #62076 created for it. However, I suspect that "security features" introduced in KitKat are somehow preventing my device from using my certificate for email authentication (because device does not trust it). I knew I could count on Google to break the most used feature of my phone (email) and thus render it useless. Another win for the history books.

had the same issue after updating to 4.4. in short, i had to re-push both OA and CA certificates to re-establish the authentication system for work

aldouse said:
had the same issue after updating to 4.4. in short, i had to re-push both OA and CA certificates to re-establish the authentication system for work
Click to expand...
Click to collapse
I already tried that twice. No joy.
The most annoying part is that I also have a Nexus 10 tablet and it had ZERO problems after upgrading to KitKat (aside from the annoying "your network is being monitored" notification). This means Motorola yet again mucked with the stock Android install and broke it.
Any other ideas? I'd hate to go through a pain of reverting back to 4.3.

It'll work if you keep deleting, rebooting, then reinstalling the apk for email. At least it did for me. My company issues these certs, and I got it to work eventually.
Sent from my XT1060 using Tapatalk

So....here is what the issue is: https://code.google.com/p/android/issues/detail?id=61785
Looks like quite a lot of people are affected by this. I cant believe how sloppy Google's QA is if something as major as this was pushed out of the door.
Now I need to wait for Motorola to incorporate this fix into their build of Android, then for Verizon to "test" it and roll it out via another OTA update. In the mean time, my Moto X is as good as a brick because I cant get my corporate email/contacts/calendar on it.
Ridiculous!

Use another client
Touchdown is my client of choice and it works great with kit Kat
Sent from my XT1058 using Tapatalk

mj0528 said:
Use another client
Touchdown is my client of choice and it works great with kit Kat
Sent from my XT1058 using Tapatalk
Click to expand...
Click to collapse
+1 for touchdown... Worth the money if you rely on exchange email.
Sent from my XT1053 using Tapatalk

Network security warning cleared also
1ManWolfePack said:
It'll work if you keep deleting, rebooting, then reinstalling the apk for email. At least it did for me. My company issues these certs, and I got it to work eventually.
Click to expand...
Click to collapse
Can you clarify 'work' - I assume this means it is sync'ing - do you still have the security warning about the certificate, or did this get cleared in your reboot/re-install cycles ?
Thanks

Just wanted to update everyone - Google has stated that the issue is fixed "in a future release". One "minor" problem - there is zero information as to which release, as well as when it is going to be rolled out.
So....as of now thousands of people using private certs on Kitkat devices are still screwed and this number is growing by the day. In order to make it more convenient to pretend like the issue is minor and insignificant, Google has blocked further comments on issue 61785 after 260 people starred it, so now users that have an issue cannot even report it.

ek001 said:
In order to make it more convenient to pretend like the issue is minor and insignificant, Google has blocked further comments on issue 61785 after 260 people starred it, so now users that have an issue cannot even report it.
Click to expand...
Click to collapse
If the issue is resolved and Google has a rollout plan for the fix, what use is there for further bug reports or reporting? It just becomes noise in their bug tracking system. Is there a purpose for yet more people to say, "hey, yeah, I have this issue too"?

Strange, I have Exchange email set up on my Moto X 4.4 and synching without issues.
After the pop-up, I accepted or ok'd. We're running a 2010 Exchange Server.

SYNSYNACKACK said:
Strange, I have Exchange email set up on my Moto X 4.4 and synching without issues.
After the pop-up, I accepted or ok'd. We're running a 2010 Exchange Server.
Click to expand...
Click to collapse
Are you using a certificate issued by a private CA for ActiveSync authentication?

ek001 said:
Are you using a certificate issued by a private CA for ActiveSync authentication?
Click to expand...
Click to collapse
Under Exchange settings, Port is 443, Security type is SSL/TLS, client certificate is None.
Strange, I thought it pushed a CA though when I completed the set up.

SYNSYNACKACK said:
Under Exchange settings, Port is 443, Security type is SSL/TLS, client certificate is None.
Strange, I thought it pushed a CA though when I completed the set up.
Click to expand...
Click to collapse
That's the point. This issue only affects users that are using certificates issued by private CAs for ActiveSync authentication. If you are not using certificates, you would not be affected.

ek001 said:
That's the point. This issue only affects users that are using certificates issued by private CAs for ActiveSync authentication. If you are not using certificates, you would not be affected.
Click to expand...
Click to collapse
Not necessarily true. I use exchange email for work and although I can set up my account I cannot receive emails. I can send sometimes. But never receive.
via my slapped KIT KAT moto X

lowvolt1 said:
Not necessarily true. I use exchange email for work and although I can set up my account I cannot receive emails. I can send sometimes. But never receive.
via my slapped KIT KAT moto X
Click to expand...
Click to collapse
What you are experiencing is a separate issue, so please open a separate thread for it.
The issue being discussed here is a situation where an attempt to use private certificates for authentication while adding an Exchange Activesync account to a device running 4.4 results in a bogus "Couldn't finish. Can't connect to server." error message (while the device does not even attempt to go out and establish a connection).

binary visions said:
If the issue is resolved and Google has a rollout plan for the fix, what use is there for further bug reports or reporting? It just becomes noise in their bug tracking system. Is there a purpose for yet more people to say, "hey, yeah, I have this issue too"?
Click to expand...
Click to collapse
There are several reasons the thread should have remained open:
1. While Google is taking their sweet time to roll out a fix, someone may find a workaround for the issue. A workaround is certainly better than a phone with no email/contains/calendar (and no, nobody wants to pay for and use those crappy 3rd party email clients).
2. Having 10,000+ people star a thread gives a great indication of how widespread the issue is, hopefully giving Google developers a hint that it needs to be prioritized and rolled out ASAP (as opposed to incorporating it into the next general patch release).
3. Since most handset vendors customize their Android build, the issue may not exist on every handset made by every manufacturer. Someone may report that a particular device is not suffering from this issue, thus making it safe to buy.
4. If and when the fixed version of Android is finally rolled out and the "fix" does not work, users have no way to report it, other than opening a brand new thread and wasting more resources.

Related

Exchange security still not working

hello,
i am so chocked that nobody is complaining about Exchange security not working with GRI40 either. the only ROM working fine are HTC Sense rom...
i know it is not important for most of you but i am stucked with a phone that cannot connect to my Exchange system...but i want vanilla ROM working...
I have no issues.
securities policy
difrnt said:
I have no issues.
Click to expand...
Click to collapse
Password/PIN required
failed attempts 10
Min Length 5
Timeout 1800 sec.
Password recovery.
This is what i need and this is not supported by vanilla Android ROM.
Only touchdown and HTC sense support this.
So this work for you but only for basic security, not like 95 % of enterprise companies out there...
Best
cedricj said:
Password/PIN required
failed attempts 10
Min Length 5
Timeout 1800 sec.
Password recovery.
This is what i need and this is not supported by vanilla Android ROM.
Only touchdown and HTC sense support this.
So this work for you but only for basic security, not like 95 % of enterprise companies out there...
Best
Click to expand...
Click to collapse
Maybe only 5% of the companies have that restriction??
I have used my phone with two different "enterprise" companies and have not had an issue.
No issues here either. Using a major law firms exchange.
Liking the update to include signatures on replies now. That's the way it should be.
Exchange Sync Issues
I also had (have?) issues and I mentioned them as part of another note on my overall response to 2.3.3. (in a phrase, not worth it) but nobody else seemed to be interested in that thread. So, welcome.
2.3.3. on my stock N1 has suffered the following problems:
1. Would not connect to Exchange server after I updated to 2.3.3
2. So I cleared data in "email" app, forced close, and tried to reinstall from
Home>Menu>Accounts. Also rebooted.
3. When trying to install from Home>Menu>Accounts I found NO PROVISION FOR MANUAL SETUP, i.e., manually entering domain name and exchange server ID; you can only enter your email address and password. The Gingerbread Manual mentions there is provision for manual setup in case of problems, but they don't tell you that you have to. . .
4. Set up from eMail App in the App drawer. When I set up that way there is a button for Manual Install.
5. Without Manual Install it is probable that your phone is assuming a domain name or ID that is wrong, and it will never connect.
6. After the successful re-install and use for about a day, 2.3.3. wiped out my server connection again arbitrarily (I never turn the phone off/on, etc.; it just did it) and I had to set up again.
This is definitely a BUG in 2.3.3--very definitely the inability to manually set up from any screen on which you can set up an account.
Same problem here, although it looks that Exchange is setup correctly -following instructions of ecdy, there is NO data synchronization at all with my exchange account! As under Froyo there were no problems at all, this MUST be a Gingerbread bug. Anybody any solution, workaround, please?
N1, unrooted stock, 2.3.3. OTA.
ecdy said:
I also had (have?) issues and I mentioned them as part of another note on my overall response to 2.3.3. (in a phrase, not worth it) but nobody else seemed to be interested in that thread. So, welcome.
2.3.3. on my stock N1 has suffered the following problems:
1. Would not connect to Exchange server after I updated to 2.3.3
2. So I cleared data in "email" app, forced close, and tried to reinstall from
Home>Menu>Accounts. Also rebooted.
3. When trying to install from Home>Menu>Accounts I found NO PROVISION FOR MANUAL SETUP, i.e., manually entering domain name and exchange server ID; you can only enter your email address and password. The Gingerbread Manual mentions there is provision for manual setup in case of problems, but they don't tell you that you have to. . .
4. Set up from eMail App in the App drawer. When I set up that way there is a button for Manual Install.
5. Without Manual Install it is probable that your phone is assuming a domain name or ID that is wrong, and it will never connect.
6. After the successful re-install and use for about a day, 2.3.3. wiped out my server connection again arbitrarily (I never turn the phone off/on, etc.; it just did it) and I had to set up again.
This is definitely a BUG in 2.3.3--very definitely the inability to manually set up from any screen on which you can set up an account.
Click to expand...
Click to collapse
I do believe there is an issue with not having the manual setup option. I read somewhere on here that someone got the manual option after the automatic setup failed 10 times. A bug yes, but once account is set up, everything works as it should.
derfo said:
I do believe there is an issue with not having the manual setup option. I read somewhere on here that someone got the manual option after the automatic setup failed 10 times. A bug yes, but once account is set up, everything works as it should.
Click to expand...
Click to collapse
No, pity, NOTHING works as it should - read my post above, please. Since Gingerbread (N1, stock, unrooted, 2.3.3. OTA) exchange sync lost, although it LOOKS set up correctly (accepts all, password, username) does NOT sync mail, calendar!
Anybody any solution please?
Strange thing noticed: after OTA Gingerbread Hotmail account in mail survived, exchange account (company) went lost.. Anything to do with problem?
bmszabo said:
No, pity, NOTHING works as it should - read my post above, please. Since Gingerbread (N1, stock, unrooted, 2.3.3. OTA) exchange sync lost, although it LOOKS set up correctly (accepts all, password, username) does NOT sync mail, calendar!
Anybody any solution please?
Strange thing noticed: after OTA Gingerbread Hotmail account in mail survived, exchange account (company) went lost.. Anything to do with problem?
Click to expand...
Click to collapse
I did a manual upgrade to GB (clean upgrade). Maybe the OTA has broken something.
Exchange Sync problems
As far as other email accounts are concerned: GMail worked fine; Yahoo! Mail, which was originally set up in the OS's "Accounts" mode, didn't work. Downloading the Yahoo! Mail App fixed that.
Maybe there's a Hotmail app too.
It sounds like bmszabo isn't getting refreshed (synced); check all accounts settings that adjust sync frequency and do a "sync now" to see if it works.
Before I erased all the data in my Exchange a/c on the phone I would get a screen with all my emails and contacts up to the point where I had installed 2.3.3, but nothing thereafter. The phone will store old data but if it can't connect to the server it won't add anything new. Why does bmszabo say "it LOOKS set up correctly (accepts all, password, username)"? It will remember the correct pwd and username as you put them in, along with an incorrect domain name and server, and never be able to connect.
ecdy said:
It sounds like bmszabo isn't getting refreshed (synced); check all accounts settings that adjust sync frequency and do a "sync now" to see if it works.
Before I erased all the data in my Exchange a/c on the phone I would get a screen with all my emails and contacts up to the point where I had installed 2.3.3, but nothing thereafter. The phone will store old data but if it can't connect to the server it won't add anything new. Why does bmszabo say "it LOOKS set up correctly (accepts all, password, username)"? It will remember the correct pwd and username as you put them in, along with an incorrect domain name and server, and never be able to connect.
Click to expand...
Click to collapse
Sorry, trying to explain things happened since GB OTA upgrade: after setting up exchange account, Exchange sync setup looks allrite, after asking about administrator priorities (and accepting them) sync sign turns green, looks like account setup correct, shows empty mailbox, but it DOES NOT sync with my mail, neither with calendar; as a matter of fact, my exchange calendar does not even show up on the list of calendars in Agenda...
O yes, forgotten: manual sync, although green wheel spins shortly, does not change a thing, neither..
Another similar issue with Exchange not syncing came up with CM 6.1.1. The fix was to reinstall the Email.apk.
http://forum.cyanogenmod.com/topic/13900-fix-exchange-2010-activesync/
ecdy said:
3. When trying to install from Home>Menu>Accounts I found NO PROVISION FOR MANUAL SETUP, i.e., manually entering domain name and exchange server ID; you can only enter your email address and password. The Gingerbread Manual mentions there is provision for manual setup in case of problems, but they don't tell you that you have to. . .
Click to expand...
Click to collapse
Firstly, you enter email and password. If you want to include domain name - you write your email like this: domain\[email protected]
After you enter it, whether it fails or succeeds - it presents you with manual setup screen.
derfo said:
Maybe only 5% of the companies have that restriction??
I have used my phone with two different "enterprise" companies and have not had an issue.
Click to expand...
Click to collapse
5 % pf the companies uses Exchange security? you must be kidding right? what my company is asking for in term of security is just basic. So i cannot believe that sorry.
This is really basic functionalities for security. It works on iphone, on Sense, on Symbian, but not on Android. So i am not getting it. If it works everywhere else than Android, it means that definitively more than 5 % of companies are requiring these basic security features.
My 2 cents of course and nothing personal!
best
cedricj said:
5 % pf the companies uses Exchange security? you must be kidding right? what my company is asking for in term of security is just basic. So i cannot believe that sorry.
This is really basic functionalities for security. It works on iphone, on Sense, on Symbian, but not on Android. So i am not getting it. If it works everywhere else than Android, it means that definitively more than 5 % of companies are requiring these basic security features.
My 2 cents of course and nothing personal!
best
Click to expand...
Click to collapse
What I am saying is that there are plenty of people who are able to connect to their Exchange servers just fine which do HAVE exchange security enabled. Maybe your company has additional security restrictions enabled. If so, then your company will fall in the 5% subset.
derfo said:
What I am saying is that there are plenty of people who are able to connect to their Exchange servers just fine which do HAVE exchange security enabled. Maybe your company has additional security restrictions enabled. If so, then your company will fall in the 5% subset.
Click to expand...
Click to collapse
well got your point... But why does all vendors supports the ""Only"" 5 % but not Android?
well...
who cares... probably the answer...
Best
I am using cyanogenmod 7 RC1 (gingerbread) and have tried multiple roms including googles vanilla and NONE of them have supported my company's exchange setup. This was supposed to be fixed in froyo and for people using sense it is fixed.
Basically when i manually setup activesync it says the phone doesn't support the security features.
Who cares if my company uses extra security or not. It works on HTC and iphone/ipad.
Google is basically doing half assed exchange support and I will keep telling people they will probably need to shell out for touchdown if they move to android until they fix it.
Google needs to support ALL ACTIVESYNC SECURITY settings, anything less isn't good enough.
I think You are right; Exchange sync (cal, mail) worked PERFECT with Froyo, and with Gingerbread it is completely lost.. I don't think any firm can do this to customers using their OS, and I do hope somebody gots a solution soon (or: Google fixes the issue?).
In the meanwhile: as I cannot use my company mail/ calendar: I wish I stayed with Froyo!!
jerkfaceirl said:
I am using cyanogenmod 7 RC1 (gingerbread) and have tried multiple roms including googles vanilla and NONE of them have supported my company's exchange setup. This was supposed to be fixed in froyo and for people using sense it is fixed.
Basically when i manually setup activesync it says the phone doesn't support the security features.
Who cares if my company uses extra security or not. It works on HTC and iphone/ipad.
Google is basically doing half assed exchange support and I will keep telling people they will probably need to shell out for touchdown if they move to android until they fix it.
Google needs to support ALL ACTIVESYNC SECURITY settings, anything less isn't good enough.
Click to expand...
Click to collapse
Agree with you...
thank you for your support. Started to feel alone here!

[i9000] New Android/WiFi Security Threat - Precautions

Since I know most of us tend to do A LOT or reading on tech sites and Android-focused blogs, you are all likely aware of the new security problem that has recently been headline news (especially on Apple sites).
In a nutshell, it is possible for malicious unsecured WiFi APs and HotSpots to steal the AuthToken from your phone when your WiFi contacts it. This AuthToken then can be used for two weeks to gain access to your Google account, which in turn may make other accounts you have vulnerable. They do this by using very common SSIDs, such as Default or Linksys, to encourage passing Android phones and/or tablets to try an connect with them. Though the connection doesn't complete, just the sniffing that takes place in advance is enough for the theft to take place.
Fortunately Android phones don't automatically try and connect to every cheap, streetcorner HotSpot they see...but they do automatically connect to WiFi APs they have been connected to before. Since these malicious APs are using very common SSIDs, it is likely your phone has connected to an AP with the same name in the past, and it will therefore query the AP, allowing the Token to be swiped.
How do we prevent this? Well, there are a few precautions that can be taken to make it less likely your poor phone gets grifted for being too trusting.
Make sure your home AP and other APs you control do not have common names. If your home AP has the SSID default, or Wireless....change it.
Keep your WiFi OFF when not using it.
Do NOT log into APs when you do not know their origin, and certainly not ones you scan for with names like Free Public WiFi. SSIDs like Evil Hacker Out to Fleece You are right out too.
If you DO log into a legit public AP (especially one with a common SSID), but it isn't one you commonly use, after you are done go into your WiFi settings and have your phone forget it.
Lastly, keep an eye on your Google account for suspicious activity. Did someone just your Google account to pay for $5000 worth of Skype calling to the Canary Islands? If so, report it (unless you got a girlfriend in the Canary Islands). Also use the security features in your gmail account to keep track of what IP numbers are logging into your mail. If someone on the other side of the country suddenly accesses your inbox, change your account details and report it to Google.
Forewarned is forearmed..and the sooner we make this scam unprofitable, the sooner it will go away and the sooner iPhone users will shut up about it.
source?
10char
kepke said:
source?
10char
Click to expand...
Click to collapse
Background on the security problem? All over the interwebs. HERE for example, or HERE.
The suggestions and commentary are my own.
In 2.3.4 this problem is fixed. Is there any chance to use the fixed files in older android versions?
Sent from my GT-I9000 using Tapatalk
HiQ123 said:
In 2.3.4 this problem is fixed. Is there any chance to use the fixed files in older android versions?
Sent from my GT-I9000 using Tapatalk
Click to expand...
Click to collapse
Might be something for the devs to consider adding to their custom ROMS.
Google on the case
In an official statement, Google has said it is already rolling-out a fix for the security flaw, which could affect all Android users, except those already running Gingerbread.
"Today we're starting to roll out a fix which addresses a potential security flaw that could, under certain circumstances, allow a third party access to data available in calendar and contacts.
"This fix requires no action from users and will roll out globally over the next few days."
Read more: http://www.techradar.com/news/phone...-security-flaw-fixing-it-957143#ixzz1N5zq1K7S
HiQ123 said:
In 2.3.4 this problem is fixed. Is there any chance to use the fixed files in older android versions?
Sent from my GT-I9000 using Tapatalk
Click to expand...
Click to collapse
So is 2.3.3 still at risk ?
google already fixed it on their servers. danger averted
Sent from my GT-I9000M

Corporate sync not working after GB update

Spotty with froyo. Now does not work at all.
Sent from my DROIDX using XDA App
Cant even do it with touchdown. Everything else works great.
Sent from my DROIDX using XDA App
I'm syncing with a hosted Exchange 2010 server (outlook.com). I had to change the server address from m.outlook.com to the actual pod*****.outlook.com address, but after that it's working perfectly with my DX on GB.
We have Exchange 2003. Tried everything.
I lose synch whenever my ROM changes.
The first time, I deleted my corp account, and recreated it...that worked.
The second time, I re-entered just my password and the last field had changed the name, not sure why...but fixed that and it resynched after both of those.
It stopped working for me too, but I haven't tried inputting the actual outlook exchange address. We always used m.mycompanyname.com.
Apparently Motorola knows about the problem. I just did a simple google search on my pop up about not being able to provision for my device. So much for "enhanced activesync" lol:
http://motorola-global-en-usa.custh...id-pro-after-mr2-update-(copy-of-answer-67174)
Still no corporate email or calendar sync. I've nuked phone clean and it still won't update.
Another e/ee here received the OTA update from Verizon and it ruined her corp sync too. So it has nothing to do with root.
I think there is some issue with pulling the certificate.
Corporate Email won't configure OTA GB 2.3
crawcraw said:
Still no corporate email or calendar sync. I've nuked phone clean and it still won't update.
Another e/ee here received the OTA update from Verizon and it ruined her corp sync too. So it has nothing to do with root.
I think there is some issue with pulling the certificate.
Click to expand...
Click to collapse
I think you are right about the issue having to do with pulling a certificate.
In my case, first OTA install failed, then Verizon folks had me flash back to 2.2, wiping my existing settings.
After the rollback, I was able to install the OTA to get to 2.3 successfully, but now I am not able to setup corporate sync on the phone. All correct settings gets me an error message saying "Login to the server failed, please try again."
One thing I notice is that on the 2.2 Corporate Sync settings, it asks for:
"domain/username" in one textbox
where on the 2.3 settings page, the username and domain are entered on separate textboxes.
Maybe that has nothing to do with anything, but it was something I noticed.
I'll update if I find anything about this issue.
****update
Call was disconnected with VZ, Moto, and I'm too mad/tired to go through the hassle again. Boo.
Droid X - Activesync issues after GB Update
So this is really strange, and I'm truly frustrated. The Mobile device policy in our Exchange 2007 environment will not allow the Corporate Mail application on our DXs provision with the server... unless we check the Allow Simple Passwords option in the policy itself. Then the device is provisioned properly and email, calendar and contacts sync.
This is not optimal as we have a strict Policy for passwords and using a simple password violates that.
Regards,
Edge
I feel your pain Edge... same for me.. doesn't allow for simple passwords. So now I am receiving the provisioning error. I called Verizon lastnight... they forwarded me to motorola and they said for me to send a document stating the settings my company needs to change.. what a joke. I am furious. I don't want third party software to download email... Although my HTC Eris sucked because of the speed.. the company HTC supported my email. Every time there was an upgrade it continued to work.
still busted. Tried several things with my company's outside tech support.
Exchange 2003. Factory reset of phone (twice). Even pulled the SD card after the second factory reset. I manually added certificates. Tried Touchdown. turned SSL on, turned off.
tried all kinds of domain settings. Tried stuff on server side. Still nothing.
Now I'm getting error messages with Gmail.
SUCCESS!
Our certificate expires in August so the IT guy went ahead and updated it. When turning on account, I left off the domain name and checked SSL. Worked immediately after that. Good luck.
FWIW, i just upgraded to p3droid's rooted GB (performed a full data reset in the process). Setting up my corporate sync was painless (worked first try) and it works flawlessly. Our IT guy is sharp and knows how to configure and maintain our Exchange server with all the latest updates and such. If anyone is having issues with Corporate Sync, I'll bet a dollar that it's a problem with your Exchange Server and not GB.
BBJohnnyT said:
FWIW, i just upgraded to p3droid's rooted GB (performed a full data reset in the process). Setting up my corporate sync was painless (worked first try) and it works flawlessly. Our IT guy is sharp and knows how to configure and maintain our Exchange server with all the latest updates and such. If anyone is having issues with Corporate Sync, I'll bet a dollar that it's a problem with your Exchange Server and not GB.
Click to expand...
Click to collapse
Exchange support on any android platform is usually from a mis-maintained Exchange server, but it just seems that motorola is extra messed up with their support. I know how my Exchange server is set up and I still have a hard time getting full functionality out of my DX and my corporate email account. At my work I depend on calender support because it's the main means of communication between our IT staff as to who is going to in the office at what point. As of right now, I'm using my work phone to keep up with work which is... Normal? I dunno, but I just know I'll have to float until I can get my hands on a decent root and ROM for the OTA update. I've tried using P3droid's patched version and out of the six times I've tried it, I've either gotten into a boot loop or I've lost all data connectivity- weird.
Laramie1997 said:
Exchange support on any android platform is usually from a mis-maintained Exchange server, but it just seems that motorola is extra messed up with their support. I know how my Exchange server is set up and I still have a hard time getting full functionality out of my DX and my corporate email account. At my work I depend on calender support because it's the main means of communication between our IT staff as to who is going to in the office at what point. As of right now, I'm using my work phone to keep up with work which is... Normal? I dunno, but I just know I'll have to float until I can get my hands on a decent root and ROM for the OTA update. I've tried using P3droid's patched version and out of the six times I've tried it, I've either gotten into a boot loop or I've lost all data connectivity- weird.
Click to expand...
Click to collapse
I had lots of weirdness with GB too when I upgraded (twice) using P3droid's update. I SBFed back to .340 and then did a Factory Data Reset just prior to booting into Clockworkmod's Recovery to do the upgrade. Haven't had one lick of problems since. Give that a try.

Exchange email security.

I tried to set up an account to my Exchange email at work using the default email app on my TF101. When I set up an account it requires that I enable all of these security settings on the tab like having a PIN and encrypting data. I don't want to do all of that. I realize that this is something set up by my Exchange administrator but I am not sure they even did it knowingly and anyway I don't want to have to deal with it to check email.
Does anyone know how to bypass this? Searches of these forums and the web show that there are some modded email apks for other platforms that let you bypass the security settings. I have not seen any such mods for ICS on the TF101.
Thanks in advance for your help.
Hello,
I do not believe the stock email is able to handle the security settings from an exchange server. You need to look at other programs like Moxier Mail or TouchDown.
+1 for touch down. Works great but it is $20
Enhanced email is another option. I got it from free app of the day by Amazon. At first, it did not work on android 3.0+, but it works fine now. It gives you the option to ignore security policies.
Alternatively, if you decompile the email.apk, I believe you can force a variable so that the email app always tells the exchange server you have sufficient security enabled (I'm not exactly sure where must be changed).
tonyz3 said:
+1 for touch down. Works great but it is $20
Click to expand...
Click to collapse
I couldn't agree more. Do the trial first to see if you like it. I don't recommend bypassing the security. You can unknowingly pass a virus through your corporate exchange. Hopefully, one day, they will resolve this issue in the Android exchange client.
tonyz3 said:
+1 for touch down. Works great but it is $20
Click to expand...
Click to collapse
+1... Touchdown. Forget any other Exchange apps.
+1 for Enhanced Email - optionally bypasses the admin security settings - works fine on Honeycomb and ICS too.
Exchange Admin
Hello,
When setting up exchange servers in the past, the default exchange policy is to have those features enabled. Even if those are DISABLED, the tablet will still ask to create the partnership. I believe this is so it can be wiped remotely. It seems ICS just tells you it is going to do all of those things as a generic warning. I have noticed this is only on ICS though. If you click ok, it shouldn't ask you to create a PIN or anything if it isn't actually required. We currently only have exchange 2010 in production in a test environment, so I have yet to look for the setting to disable this feature entirely. Hope this helps you understand how it works at least a little.

My Wishlist. Things I miss about KK...

As you all know, Lollipop broke a lot of third party apps. Several of which I used daily and a couple I can't find a (good?) replacement for.
The first and most missed right now:
Wake lock detector. That app was great for me. Not only did it help me kick battery sucking crap to the curb but by dumping those apps my phone had a noticeable increase in performance.
I can't find one that works with 5 the way it did. Anybody know of one that isn't overbearing?
Reboot Menu. Quick boot, recovery, etc.
But thanks to @tx_dbs_tx and his marvelous work with the Hybrid X Series roms that problem is solved.
There are others but I'm drawing a blank at the moment.
Anybody else?
May be slightly off topic and I apologize in advance for long post but Google recently changed their security for email which impacted the standard email apk. It started like this with me: I recently signed into Google plus and was prompted to update my security and privacy settings. I quickly noticed an option to deny access to lesser security applications. I naturally opted to do so. All was fine until I tried to send the next email. Darn you Google, you deny my sent email and send me a warning email that some "unknown device" tried to access my account. Logging back into Google plus, I recognized the email sending IP address as my own but it shows the device as unknown? Google sends me another email after I tell them this was me and after granting access to lesser security apps, I hoped Google would allow exception to just that email app but no. I tried momentary granting, sending an email and reverting back to denying access to lesser security app but exception still not apply to a single app. The warnings and urges to switch to gmail for "modern" security continued. Google says they cannot protect my security with "modern" security methods. It's true but the approach is unfriendly being without exception, an update to email apk and saying I should change my Google password because some unknown person knows it is not completely true; email apk is a trusted app, but there are other email apps besides gmail with the acceptable security token that gmail gmail inbox uses.
I found an app but didn't see the security info I was looking for so I sent an email and got this reply in quotes,
"Thank you for contacting us. Type Mail is very secured, it does not have your Gmail password, but uses OAuth 2.0 instead. We don’t spam users, the opposite we offer a spam filter."
Link to app: https://play.google.com/store/apps/details?id=com.trtf.blue
I'm not endorsing this email app but just started using this yesterday. My security is set back to denying access to lesser security apps and I'm sending emails again without nags. It's a refreshing approach with a modern UI and optional dark theme; the buttons can be orange or blue.
Gmail in the past has been a turn off with their terms about images granting them ad/spam privileges. Gmail app also used more battery than email with instant Samsung push services did. So far, Type Mail push service is actually quicker than Samsung push. Battery use, I'm unsure of ATM.
Any thoughts, comments or suggestions. I've long trusted standard email, text and voice mail apps. I'm sure there are other alternatives but who is trustworthy? Will the Android email apk get a security update? I'm hearing no but is Samsung going to offer a replacement? They have not responded to me yet.
Forget KitKat and Lollipop, Android M 6.0 on paper looks to be a game changer for this phone! Make this my wish list; we can try hard to make the most of what we have until then.
http://www.forbes.com/sites/gordonkelly/2015/05/29/google-android-m-has-9-great-secret-features/
Let's hope Google, Samsung and Sprint don't find ways to mess this up or fail to meet expectations. Most of these are great ideas to improve Android, IMO.

Categories

Resources