First my phone's details:
Rooted
Model: Samsung-SGH-I337 (AT&T)
Android Version: 4.2.2
Build: JDQ39.I337UCUAAMDL
Here's the situation...
I'm an IT guy (low on totem) and we're in the Pilot phase for Android using MobileIron. I have a rooted AT&T 32GB S4 and I'm trying to fool MobileIron into believing my phone is compliant. I have done lots of reading on this subject, and nothing has helped, to this point. I have access to the MobileIron server, so I can register, and de-register, my device as often as I want. I plan on reporting this back to the people who get paid more than I do to let them know how secure this is.
Here's what I've tried:
1. I have installed Xposed Framework, and installed RootCloak, but it has zero effect on MobileIron. I couldn't even get to the point in MobileIron setup where I could download our 'secure apps'. (I am aware that RootCloak moved to Cydia, but I read it wasn't as good)
2. I tried using 'Hide My Root' from Play, and that also had zero effect on MobileIron; I got no further than I did with RootCloak.
3. I tried using 'Hide Rooting Lite' from Play, and I was able to download our 'secure apps', and MI required that I create a password/pattern to unlock my phone. In my opinion, this got past the first level of authentication that MI requires, which is a step in the right direction. I have recently learned that MI also scans your list of installed APPs for any APP that requires root.
Do any of you think that changing the names of some of my apps (Titanium Backup, Root Explorer, etc.) would help fool MobileIron? What about trying to DualBoot ROMS? If the secondary ROM that I setup is not rooted, and I have MI installed on it, would it be able to detect root from my primary ROM?
Any help, or ideas that I have not thought of yet, that you geniuses can provide would be greatly appreciated!!
GatorRuss said:
First my phone's details:
Rooted
Model: Samsung-SGH-I337 (AT&T)
Android Version: 4.2.2
Build: JDQ39.I337UCUAAMDL
Here's the situation...
I'm an IT guy (low on totem) and we're in the Pilot phase for Android using MobileIron. I have a rooted AT&T 32GB S4 and I'm trying to fool MobileIron into believing my phone is compliant. I have done lots of reading on this subject, and nothing has helped, to this point. I have access to the MobileIron server, so I can register, and de-register, my device as often as I want. I plan on reporting this back to the people who get paid more than I do to let them know how secure this is.
Here's what I've tried:
1. I have installed Xposed Framework, and installed RootCloak, but it has zero effect on MobileIron. I couldn't even get to the point in MobileIron setup where I could download our 'secure apps'. (I am aware that RootCloak moved to Cydia, but I read it wasn't as good)
2. I tried using 'Hide My Root' from Play, and that also had zero effect on MobileIron; I got no further than I did with RootCloak.
3. I tried using 'Hide Rooting Lite' from Play, and I was able to download our 'secure apps', and MI required that I create a password/pattern to unlock my phone. In my opinion, this got past the first level of authentication that MI requires, which is a step in the right direction. I have recently learned that MI also scans your list of installed APPs for any APP that requires root.
Do any of you think that changing the names of some of my apps (Titanium Backup, Root Explorer, etc.) would help fool MobileIron? What about trying to DualBoot ROMS? If the secondary ROM that I setup is not rooted, and I have MI installed on it, would it be able to detect root from my primary ROM?
Any help, or ideas that I have not thought of yet, that you geniuses can provide would be greatly appreciated!!
Click to expand...
Click to collapse
Hi! Any luck with beating mobile iron?
MobileIron is kicking my ass. I have a Nexus 5 that's never been rooted and I can't get MI to install on this device. Is it because the bootloader is unlocked? I'm in IT as well, and our MobileIron administrators have NO IDEA what to do.
Broadscope said:
MobileIron is kicking my ass. I have a Nexus 5 that's never been rooted and I can't get MI to install on this device. Is it because the bootloader is unlocked? I'm in IT as well, and our MobileIron administrators have NO IDEA what to do.
Click to expand...
Click to collapse
I had a similar issue in my non-rooted M8. MI started working after I did a factory reset .
Related
Has anyone been able to encrypt the N3 after rooting? I can't get it to go and it is mandatory for my work email to be pushed to my phone.\
edit: I've now tried manually using the settings menu. Even after setting a "high security password" it just flashed the android encrypt icon, reboots and then goes right back into the system. I've tried doing "fast encryption" as well and that doesn't work either.
edit 2: If anyone is wondering I didn't get this to work, however, after some searching I was able to find that Touchdown does encryption and will enforce all policies within the touchdown app itself keeping it separate from the rest of the phone. So I'm able to get my work email, not have to encrypt my entire phone, and stay within policy compliance. I just wish touchdown integrated with the stock calendar.... can't win 'em all.
Flying_Hellfish said:
Has anyone been able to encrypt the N3 after rooting? I can't get it to go and it is mandatory for my work email to be pushed to my phone.\
edit: I've now tried manually using the settings menu. Even after setting a "high security password" it just flashed the android encrypt icon, reboots and then goes right back into the system. I've tried doing "fast encryption" as well and that doesn't work either.
edit 2: If anyone is wondering I didn't get this to work, however, after some searching I was able to find that Touchdown does encryption and will enforce all policies within the touchdown app itself keeping it separate from the rest of the phone. So I'm able to get my work email, not have to encrypt my entire phone, and stay within policy compliance. I just wish touchdown integrated with the stock calendar.... can't win 'em all.
Click to expand...
Click to collapse
I've noticed this as well. Can't encrypt device when System reports "Custom". Currently it seems the only path to device encryption is restoring un-rooted stock firmware. . . .
This is driving me nuts since I have to encrypt my device do to Coporate net.
encrypt first then root - Don't work
Root first then encrypt- Don't work
can anyone else confirm this ?
greffel said:
This is driving me nuts since I have to encrypt my device do to Coporate net.
encrypt first then root - Don't work
Root first then encrypt- Don't work
can anyone else confirm this ?
Click to expand...
Click to collapse
im not a dev but have read about this issue from S3 and up and the only positive thing i have seen is that it can be possible when TWRP can be installed it "can" support encryption. i dont think you will find a solution without recovery option.
greffel said:
This is driving me nuts since I have to encrypt my device do to Coporate net.
encrypt first then root - Don't work
Root first then encrypt- Don't work
can anyone else confirm this ?
Click to expand...
Click to collapse
Confirmed. I've tried repeatedly to root-then-encrypt. All attempts failed. As soon as I un-rooted and rebooted, I was able to encrypt.
digittante said:
Confirmed. I've tried repeatedly to root-then-encrypt. All attempts failed. As soon as I un-rooted and rebooted, I was able to encrypt.
Click to expand...
Click to collapse
After weeks of trying different things.I Finally figured it out!!
First- Encrypt your device, before rooting
Second- Use the Kingoapp Root method, not Root De La Vega. When i used Root De La Vega, it would not work, and I would get the same error as everyone else. http://www.kingoapp.com/# is the link to the kingo root method. Its a One-Click method that took 10 minutes from start to finish. I just downloaded Multi-Window Manager to test the root, and it worked like a charm.
Hello everyone :laugh:
I'm new here in this forum and as on android user as well so go soft on me
I have a problem regardless the root and unroot device, my nexus 7 in rooted (I dunno if it is rooted by manufacture or not)
I installed some online games like Iruna online and avabel problem is I always got the same error screen "Authentication Failed"
I heard it got something to do with rooted devices, so I tried some programs that un-root the device for certain apps but it failed too.
any suggestion or this error is duo to something else
Ps:Google play is restricted in my country so I'm using hotspot
Do you want to hide the root or unroot the device.
No Nexus 7's are sent rooted from the manufacturer if it is rooted then this has been done by a user. Wugfresh nexus toolkit has an option to unroot but this involves flashing an unrooted stock ROM and will wipe the device. I'm not aware of any other way to unroot the tablet. Some apps say that they can hide the su binary from other apps. For more info on what "root access" actually is see XDA university for a pretty concise explanation. Try hide my root by amphoras if you can't get that on hotspot PM me and I will send you the .apk file.
Sent from one of my 47 iPads running android C3P0
I tried multiple apps that hide root but all failed, I will try the one you mention,
and I'm asking about the error too "Authentication failed" is it because of root or else ?
Edit: I just tried the app and the same error
SheepRaider said:
Hello everyone :laugh:
I'm new here in this forum and as on android user as well so go soft on me
I have a problem regardless the root and unroot device, my nexus 7 in rooted (I dunno if it is rooted by manufacture or not)
I installed some online games like Iruna online and avabel problem is I always got the same error screen "Authentication Failed"
I heard it got something to do with rooted devices, so I tried some programs that un-root the device for certain apps but it failed too.
any suggestion or this error is duo to something else
Ps:Google play is restricted in my country so I'm using hotspot
Click to expand...
Click to collapse
Hi, SheepRaider...
If your Nexus 7 is rooted with Chainfire, then unrooting it should be relatively straightforward...
------------------------------------------------------------
** Go into the App Drawer and locate the SuperSU app. By default, the icon should be a YELLOW triangle with a RED hash (#) overlayed on top of it. However, this may have been changed by whoever originally rooted the device. See the first thumbnail at the bottom of this post for the alternative icons. If it's been made invisible (hidden from launcher), then things become a little more technically challenging. See this post for more details on this.
** Once you have located the SuperSU app, run it and tap on the SETTINGS tab.
** Scroll down to the option, Full unroot - Cleanup for permanent unroot, tap on this and follow the on screen instructions.
** Reboot your Nexus 7... you should now be unrooted.
------------------------------------------------------------
Take a look at my attached thumbnail images for the sort of things you should expect to see.
Hope this helps... and good luck.
Rgrds,
Ged.
Hello: I have an AT&T I337 that until 2 days ago had stock ROM on it. I didn't like the fact that AT&T blocked my ability to 1) tether, and 2) sideload so after about 1 1/2 years I finally decided to root and flash a ROM that would allow me to do these things. I downgraded from NB1 to MK2, rooted with saferoot, installed safestrap, and installed Deadly Venom's v3.0.2 NC1 KitKat ROM. Since there are some outstanding instructions in the AT&T GS4 forum I was able to do all this relatively easily (and I'm pretty much a NOOB) and I'm really happy with the ROM so far. The Wi-Fi Hotspot capabilities seem to work well; the only problem is that I still can't sideload. The "Unknown sources" option under "Security" in settings is greyed out and unchecked (so are "Wait for debugger" and "Verify apps via USB," under "Developer options," but I don't think I need those items for anything). Does anyone else have this problem? Or more importantly, does anyone know how to enable "Unknown sources" so I can install apps from the Amazon Appstore, etc.? I thought for sure that rooting would be the solution, if not the custom ROM. I even tried using the AndroidCentral Sideload Wonder Machine v1.2 that someone mentioned would install apk's regardless of the phone's security settings -- it didn't. Any assistance would be greatly appreciated. Thanks...
It should be some "device administrator" app that is causing this.
Sent from my SGH-I337 running GPE using Tapatalk
You're right!
I just figured out that it was indeed my employer requiring device administrator privilege in order for me to sync my work email on my phone. I removed the email admin account and all my security restrictions cleared (along with my email account, unfortunately). Thanks for your advice, Case closed!
K
Sent from my GT-I9300 using XDA Premium 4 mobile app
Can't enable unknown sources
It's not for me it didin't work for my phone....anymore solution that you can give me?I searched alot of websites and i hope this one works,
Thanks
Hi all,
I use my personal phone (specifically a phone that I own) for both home use and work use and I am considering rooting my phone so I can make some changes to the system UI file. I know that one of the checks that the "Device Policy" app checks for is to see if the phone is rooted so I was wondering if anyone has rooted their phone and successfully been able to pass the device policy check? Specifically I am looking to find out if:
1. would something like root cloak work?
2. if root cloak will not work, has anyone rooted the phone, made the changes, and then disable root leaving the phone running un-rooted so that the device policy check still succeeds? (I ask as I do not need permanent root, just access to fix some of the annoyances that come with stock android).
Thanks,
dave
Hi!
I have issue with app on my S7 Edge that demands me to unroot. I rooted my phone 5 years ago or more and I don't remember a thing about it. I did this to permanently remove bloatware. Only way I know to unroot is to flash stock-rom again but I don't want to loose my hard effort on debloating + data and so on. Is there any tricks for that? Like hide/remove su binary? I really don't remember where to start. Also with factory reset or something I cant remember I lost root access partially - that is apps can still tell that phone is rooted (root checker tells that root access is available but then also orange warning that root access is not properly installed on this device). But they can't request root privilege for some reason. But I still have this custom recovery rom installed where I have basically root access to phone - do you think I could use this to somehow hide temporarily root from my app that is complaining about it and then later restore root to the full - that is to make apps able to request root access again? I would like to keep my apps/data and I remember them getting lost in process of rooting due to some samsung encryption crap - not sure how to check data/app loss would be case now since I did it so long time ago. Could anyone help me out?
For documentation purposes. So in my case I had lost root with factory reset. I had to boot into TWRP and re-flash super su. Difference from official tutorial: https://forum.xda-developers.com/t/...ial-twrp-for-galaxy-s7-edge-hero2lte.3334084/ was that in step 9 my phone did not complain about dm-verity,. I did not have to disable encryption and I did not loose my data. Someone may correct me but it was because I had already rooted in past and the most likely cause for "loosing" root was doing factory reset. PS I have european model so I am not sure how much it makes this tutorial different.
Now what is left to do is come up with ideas how to hide root from 1 specific app in Android 7.