Related
Just a quick note looking to see if anyone else is having the same problems that I've been having the last 24 hours.
I've had my 8125 about 3 weeks - and in that time have successfully upgraded to various summiter AKU2 ROMs. Last night my IT department pushed out a Goodlink policy update requiring passwords on all handhelds. Of course this is a pain in the ass, but I understand the issues and don't really have a problem with this policy.
However, there is a serious issue with the goodlink password requirement and AKU2 - basically they don't seem to work together. Immediately after having the policy pushed to me, the first time I did a soft reset I ended up with a blank white screen, with the task bar on top. The left side of the task bar would quickly flash "password" and then change to "Start" (w/ no start logo) and that was it... Nothing... Soft reset - same problem. The only thing that brought the device back was a hard reset, but once I reloaded goodlink and re-entered the password I was back in the same place.
After pulling my hair out for most of the night (it's not good to go to sleep at 3:00am when you have a client board meeting at 8:30am), I decided on my way to the airport that I would try loading the original Cingular ROM back. Surprise surprise, that worked (sort of - additional details below). After spending a lot of time trying out different solutions today, I've come to the conclusion that goodlink passwords only work with the original Cingular ROM - I don't know if it's a problem with AKU2 or a problem with the customizations.
Anyone else with this issue? I'm currently running goodlink 4.7, I'm wondering if 4.8 will fix any of these problems, I just can't find an OTA link for 4.8 and the cab from goodlink doesn't install correctly.
Additional problems - Even with the original ROM, there are some conflicts with the goodlink password. If I have certain shortcuts in the startup folder (at this point I think its AEBPlus and PQZII), the device freezes immediately after entering the password. After soft-resetting, I can explore the device from my PC while it's waiting for a password and delete the offending shortcuts, soft-reset again, and then I'm back in business.
I just posted the same problem earlier today. I have been using the latest Goodlink 4.8 build and have the same problem with AKU2. White screen of death with the status line showing at the top. My IT department turned off the password requirement for me. That seems the only way to fix it so far. I guess this is one reason Cingular has not released new firmware yet.
Ira
well - it's nice to know I'm not the only one.
Unfortunately my company doesn't officially support goodlink on an Windows Mobile devices - only the Treo 650. Given the fact that the device isn't supported AND I'm using a hacked ROM, I can just imagine the laughs they'll have at my expense.
At this point I'll just hang out and wait to see what happens.
I wonder if this is why Palm pulled the AKU2 update for the Treo 700w? Supposedly it was due to a compression issue, but who really knows? I'm posting a message on on treocentral, as there's a Good rep who monitors that board.
just curious.. does your it dept use the remote erase function on the backend?
i believe we do thus we do not require password protect on goodlink...
good to know i shouldn't have probs w/ it on the treo700w since i gotta setup one on fri..
seamonkey420 said:
just curious.. does your it dept use the remote erase function on the backend?
Click to expand...
Click to collapse
We do, but I work for a company that has become very, very, very conscious of protecting client data - with a couple of in-the-news issues (one moron left a cd with client employee data on a plane). They pushed the password requirement out to blackberries last week, and Goodlink devices this week.
Yes Ive had the same problem for last 2 weeks with both mini s and sp5 and goodlink.
Ive just updated goodlink to 4.8 and all seems to be fine.
Ive only just updated to 4.8 today but so far so good.
Update
I had some free time on my hands to tinker tonight - so I decided to see if I could test 4.8 with and AKU2 ROM.
Since my company hasn't rolled 4.8 out yet, I had to basically hack it in, which involved extracting the files from the 4.8 desktop installer from the goodlink website and copying those over my existing goodlink backup on the storage card (after copying the originals somewhere else of course).
I'm happy to report that, as of right now, the issue does seem to be resolved. It does look like 4.7 isn't compatible with AKU2 (if you use passwords) - so if this situation applies to you (on 4.7, using passwords) you shouldn't upgrade to an AKU2 ROM.
4.8 still does not work for me
I initially loaded goodlink 4.8 and had the password problem with the 2.17 rom. I have given up and am using the stock firmware until there is an official cingular update.
glad to hear others are having better luck.
ira
I had the same problem with GoodLink 4.7 and the new version 2.x ROMs on my Qtek 9100. I ended up downgrading to version 1.x ROMs (Button 1.5.4.2 WWE works fine with GoodLink 4.7.
aku2, goodlink 4.7/4.8, cingular 8125, and password policy
Thanks to CameronJ on his post. I was in the same boat, i.e. Going along fine on my Cingular 8125 with the released ROM when my company rolled out a password policy on Goodlink version 4.7. On the released ROM I started having unreliable service (disconnects almost continuously). I finally upgraded to AKU2 before seeing this thread (thanks Summiter for the great AKU2 build). However at that point I hit the consistent White Password Screen of Death as soon as I reinstalled my backup of Goodlink 4.7 and the policy was enforced.
However CameronJ's 4.8 suggestion was perfect. I too couldnt do a normal upgrade but by downloading 4.8 from Good and then copying the entire directory from the Pocket PC 2005/4.8/EN/ directory into my backup directory, I was back up and running with no problems. (this of course ignores all my false starts and problems). Dont use the Smartphone files as those wont work.
I was on the verge of giving up. Thanks for this thread.
additional password hacks
After playing around a bit in the registry the last week, I also found how to have a password that violates my organization's password policies. While I understand the reasoning behind having a password, the 30 minute timeout (which is the max my organization lets me set) is way too short. It looks like the goodlink password parameters work in the following way:
- Password policies are passed down through GoodLink and stored in the registry in HKEY_CURRENT_USER\ControlPanel\GoodLink\Password. There are a number of keys here, including ITLockedTime, ITLocked, ITPasswordMinLength, and a few others.
- When you go into the Lock/Password settings, the control panel settings dialog pulls from these registry keys to determine if your password meets policy.
- After a short period of time, any changes to these registry keys get overwritten back to corporate policy, however, nothing ever checks your password (as long as you don't go back into the Lock control panel extension) to make sure it complies with policy.
Basically, this means that you can change the key for minimum length or timeout and then go into the Lock control panel extension and change your password. I currently have a 1 character password set to timeout every 24 hours (instead of 6 characters that times out in 30 minutes). I've been running this way for about 4 days now, and even though the registry keys are back to policy, my reduced security password is still in force.
ITPasswordMinLength is self explanatory - change this to however many characters you want as your minimum.
ITLockedTime is a little more obscure. The decimal value here corresponds to the number of items in the list of timeout values in the timeout dropdown. 1 means only one item will show up (which is 0 minutes), I think 11 is 24 hours.
ITLocked - I'm guessing that if you set this to 0 it doesn't check these parameters at all, which means you might be able to disable the password. I haven't played with this one yet.
Re: additional password hacks
CameronJ said:
ITLocked - I'm guessing that if you set this to 0 it doesn't check these parameters at all, which means you might be able to disable the password. I haven't played with this one yet.
Click to expand...
Click to collapse
Wow, I've been looking for this kind of hack for awhile. I'm going mad with the couple minute forced timeout/lock policy I'm forced to live with. Imagine trying to use your pocket pc as a GPS device and it locking every couple minutes! (totally sucks)
Do you know if it's possible to do what did in a normal AKU2 MS Push Mail system? (I dont use goodlink, just regular microsoft push)
Which reg keys do I mess with?
How do you keep the changes from being detected/overwritten?
Thanks!
Any update on rather this has been addressed in a more recent ROM (AKU 2.3?). I am looking to start my company's Goodlink trial program and currently have 2.17. Thanks!
Re: additional password hacks
CameronJ said:
ITLocked - I'm guessing that if you set this to 0 it doesn't check these parameters at all, which means you might be able to disable the password. I haven't played with this one yet.
Click to expand...
Click to collapse
An update - this is the best way to go. Set ITLocked to 0, go into the password control panel applet and uncheck the password box. No more password requirement.
caiken said:
Any update on rather this has been addressed in a more recent ROM (AKU 2.3?). I am looking to start my company's Goodlink trial program and currently have 2.17. Thanks!
Click to expand...
Click to collapse
As long as you are using the most recent version of the goodlink client (4.8 ) you will be fine. The issue is with the previous version of the client (4.7).
I had no problem with this nasty password bug when I upgraded to AKU 2.3. I'm using Goodlink 4.8.
Ira
irablumberg said:
I had no problem with this nasty password bug when I upgraded to AKU 2.3. I'm using Goodlink 4.8.
Ira
Click to expand...
Click to collapse
This problem only exists with AKU2+ ROMs and GoodLink 4.7 - not 4.8
CameronJ said:
irablumberg said:
I had no problem with this nasty password bug when I upgraded to AKU 2.3. I'm using Goodlink 4.8.
Ira
Click to expand...
Click to collapse
This problem only exists with AKU2+ ROMs and GoodLink 4.7 - not 4.8
Click to expand...
Click to collapse
Thanks for the update guys. I'm assuming the "Get Good" link now downloads 4.8.
CameronJ,
You wrote:
An update - this is the best way to go. Set ITLocked to 0, go into the password control panel applet and uncheck the password box. No more password requirement.
Can you elaborate on this process? Where do I find the password control panel applet?
gaelen00 said:
CameronJ,
You wrote:
An update - this is the best way to go. Set ITLocked to 0, go into the password control panel applet and uncheck the password box. No more password requirement.
Can you elaborate on this process? Where do I find the password control panel applet?
Click to expand...
Click to collapse
Also, it appears that any changes that I make to the Good settings in the registry are over-written the very next time it syncs with the Good server. Anyone know how I can lock the registry settings that I set in addition to how I remove the requirement for the Good password controlled by my IT dept.
Hi all:
Just picked up my first WM device (Tilt) the other day. I'm have a problem turning off the password function on the device. I set it the other day and now it just getting to be a pain entering a password for wife any time she wants to use the phone.
Right now, the "Prompt if device used for" checkbox is greyed out so I cannot de-select it. the longest I can set the time limit for it one hour.
Thanks for any help,
Lost in Alabama
Sounds to me like you're connecting to an Exchange server that has this set as a policy, which shuts down your ability to turn it off. Are you syncing data with Exchange?
That's correct. I have since deleted my sync connection to my Exchange server at work.
thanks for any suggestions.
After some searching, looks like a way to remove the security policy would be to issue a remote wipe of my device from our Exchange Admin team. Would like avoid getting those admin guys involved if possible.
Maybe a hard reset? Seems drastic but that might be what's needed.
i did have the same problem, the only way is to hard reset your phone.
And then you wont be able to sync with the company server...
I would just petition them to increase the default time before the lock is applied.
(Having said that I have mine set to every five mins and thus have to enter the pin quite often- but I like the idea that its secure)
I have the same problem but i have set time after device wants password to 24 hours, so i never have to enter the password besides of booting up the device.
There is a program you can install that allows you to remove the security password policy on wm phones even while still synced with the exchange server. Zenyee.com Stay Unlock is the name of the program. I can't remember where to get it though. I just checked the Zenyee site and due to it's lack of a search feature I can't seem to find it again.
Found some other discussion on this elsewhere on the forums. Here is a link to a post by coderuckus talking about changing registry settings to circumvent the policy:
http://forum.xda-developers.com/showpost.php?p=1367367&postcount=1
going to fiddle with that later today and report back my findings.
I had the same problem - install the cab from the following thread and you'll be fine : http://forum.xda-developers.com/showthread.php?t=329570&highlight=Zenyee
Zerodivider said:
I had the same problem - install the cab from the following thread and you'll be fine : http://forum.xda-developers.com/showthread.php?t=329570&highlight=Zenyee
Click to expand...
Click to collapse
Jackpot! Thanks Zerodivider.
As info the directions from Coderuckus works to disable the security policy but it invalidates the sync'ability back to Exchange (at least in my case).
Directions below:
using a device registry editor (remote, or PHM) modify the following key(s)
The Exchange Security Policy (4131) updates the device policy:
HKLM\Security\Policies\00001023: 0 = Enabled; 1 = Disabled
Thanks for the help everybody!
Hello,
I have the HTC Touch Diamond with WM6.1. I love the phone but my exchange administrator has implemented password protection for my email account. So every hour my phone is locked until I enter the password. Does anyone know how to extend the time or disable the password in the registry. I have found several references to the registry setting in WM5 but that did not work so I am wondering if it is a different entry in WM6.1 Any ideas?
Can anyone help me with this?
This should work on WM6.1:
\hklm\security\policies\policies
Change value name "00001023" from '0' to '1'.
Or: http://cid-79cd30393341a619.skydrive.live.com/self.aspx/Public/WMSimulateKeyPress.zip
Or: http://www.modernnomads.info/wiki/i...ation+when+your+PocketPC+is+on+external+power
Or: http://mobilitytoday.com/forum/showthread.php?t=13030&page=2
Btw, think about it before you remove this policy. The sysadmin does not enforce this policy for nothing. I learned to live with it, it also has some advantages (for example when your device is stolen and you won't accidently push any buttons)
Thanks for the reply. the 3rd link which is Zen's program does not seem to work in WM6.1 in the Diamond. The registry entry definitely does not work because I have set it and reset the phone and it still locks. You have a point about why the password is there but it becomes a safety issue when I am driving and need to make a phone call. I am not sure what the Simulate Key press does could you provide any more information?
I am finding that with the HTC diamond alot of the customization has changed alot of the functions for the registry. I wish I could find someone that has figured all this out.
Hi All,
Guess I have been spoiled with WinCE 2003 SE (4.21.1088 B15118.1.4) on my Motorola MPx220. On the MPx220, enabling the Phone Lock feature simultaneously locks the Keys and the Device. The Screen is remains 'viewable' so that one can look at upcoming appointments, time, etc. The Soft Button on the left of the screen displays 'Unlock' and when I press it, the Enter Password To Unlock screen appears where I enter my 4-digit Simple PIN.
On the HTC Fuze (aka TouchPro), the Key Lock and Password window appear to be separate. Selecting Key Lock simply locks the 'keys' but does not secure the device from access. The Password window does secure the device from access but until the device is unlocked, one cannot see the information on the Home screen ... note that I have the device configured to always return to the Home screen (aka Today).
I have tried several applications S2U2, SPB Mobile Shell, ThrottleLock, KeyLock, and TouchLockPro to name but a few. S2U2 & SPB Mobile Shell seem to be the closest to a solution but somehow, the Password screen manages to get on-top.
I would greatly appreciate any insight from seasoned experts.
Advance thanks,
-------------
ROM Version: 1.90.707.1 WWE
ROM Date : 08/01/08
Radio Version: 1.02.25.19
Protocol Version: 52.33.25.17U
I tried looking for that and so did many other people. Unfortunately, it's not possible. It's one of the differences between touchscreen and smartphone winmo.
Hi Kraize,
Appreciate the response; I'm going to do a Registry Dump of my MPx220 using PHM Regedit and an Registry Dump of the HTC. I have a utility that will allow me to compare results.
I expect *thousands* of differences but I will be looking specifically at the security/password related areas ... this should allow me to determine if it is .DLL specific.
Cheers,
Does anyone know of a software that Prevents unauthorized software installations.
If anyone knows of such a tool or can create one, please let me know. I'm running a BlackBerry OS
Thanks,
Joone
Try this
Been running this for about a month now......best part it's free!
https://www.mylookout.com/
Thanks for the quick reply dwgibson. I installed Lookout and tested it out by installing software and it prevent me from installing software. This really isn't what I'm looking for.
Thanks for you guys help in advance!
- Joone
If you feel your girlfriend is going to install spyware on your phone then I think you need to get a new girlfriend more then worry about what she might do to your phone. I hear were your coming from but I rarely leave my phone where others can gain access to it. As for the firewall program. I'll have to give it a look and see how much of a hog it is. It would be nice to have a program firewall on the phone.
Thanks for the quick reply Wil.
- Joone
Two options:
#1) Set the PIN lock on the device with <1 minute as timeout - Settings, Security.
#2) Set the Registry Policy on the device to prevent .CAB installation - Windows Mobile MSDN.
HTH,
Hi hilaireg,
Thanks for your reply. In response:
1) I mentioned in my original post that a device pin lock is not what I want to do as everytime I use my mobile very frequently as most people do and having to unlock my mobile everytime will be a problem
2) Setting the Registry Policy to prevent .CAB installation is not too bad of an idea. It will however prevent me from installing software. If I can't find the solution I'm looking for, passcode to access the software installation process, then I will have to settle for that option.
There's an app for the iphone that might work if their was a similar app for BB. The app is named Lockdown and it password protects apps that you choose to password protect. Password protecting apps may give me the privacy I need if I password protect the correct apps. However, I can't find an app similar to Lockdown available for BB.
If anyone knows of such an app please let me know. I'll continue looking.
- Joone
Hi ajmusic24,
You're describing functionality similar to Windows restricted accounts. AFAIK, there is no feature to "protect" specific funtionality ... other than via the policies.
If you aren't successful in finding a custom application to meet your needs, you could always create a couple of registry files which enable/disable the installation policy.
Cheers,
hilaireg,
I would prefer an app that can provide the option of password protecting the software installation process. What you bring up about creating a couple of registry files which enable/disable the installation policy might be a temporary fix. How would I go about doing this?
Thanks,
Joone
it might require a new app that would repace the existing cab process, something like "CabInstl". So when a cab file is launched the new app would process it. This new app then would check the registry to verify uid/psw before installing to default location or other location.