I recently bought a Pocophone with the idea of installing LineageOS. Actually, I was looking for models where I could install it, since I want to remove google and vendor bloat apps.
Just after unboxing it, I went to check how to unlock the bootloader, and I faced a really cumbersome process:
- Register an account, providing email, phone and wait an SMS to confirm.
- Login your phone and wait 72h with the phone powered on and Synced with MI cloud (wtf?)
- Download an unlock tool that only works in Windows. I'm a Linux user so I had to setup a VirtualBox VM to proceed.
I didn't want to use my brand new phone and add all my contacts and stuff and then Sync everything to Xiaomi servers. To me this looks like a data collection policy to get as much as they can from Google et al. forcing users to Sync with a long enough wait time window.
Why don't use a more user friendly process like Motorola and others do???
I totally regret choosing Xiaomi, and now I'm going to try to sell it just because of this.
vdo1138 said:
I recently bought a Pocophone with the idea of installing LineageOS. Actually, I was looking for models where I could install it, since I want to remove google and vendor bloat apps.
Just after unboxing it, I went to check how to unlock the bootloader, and I faced a really cumbersome process:
- Register an account, providing email, phone and wait an SMS to confirm.
- Login your phone and wait 72h with the phone powered on and Synced with MI cloud (wtf?)
- Download an unlock tool that only works in Windows. I'm a Linux user so I had to setup a VirtualBox VM to proceed.
I didn't want to use my brand new phone and add all my contacts and stuff and then Sync everything to Xiaomi servers. To me this looks like a data collection policy to get as much as they can from Google et al. forcing users to Sync with a long enough wait time window.
Why don't use a more user friendly process like Motorola and others do???
I totally regret choosing Xiaomi, and now I'm going to try to sell it just because of this.
Click to expand...
Click to collapse
Just use a 3rd party app to sync your data or just backup them. There are tons of apps on the PlayStore.
And about the unlocking procedure, this is just a standard procedure and it is for safety measures. Like confirming that your Xiaomi Model has bounded to its real model number because there are tons of fake and clone Mi Phones on the market and registering your phone on their servers that your phone model is unlocked. Good thing though that the unlocking for Poco is only for 3 Days, other models I heard is about 1-3 months.
Darklouis said:
Just use a 3rd party app to sync your data or just backup them. There are tons of apps on the PlayStore.
And about the unlocking procedure, this is just a standard procedure and it is for safety measures. Like confirming that your Xiaomi Model has bounded to its real model number because there are tons of fake and clone Mi Phones on the market and registering your phone on their servers that your phone model is unlocked. Good thing though that the unlocking for Poco is only for 3 Days, other models I heard is about 1-3 months.
Click to expand...
Click to collapse
To start with, even for Poco F1, the wait time was 3 months. Then they shortened that step by step and it is now 72 hours. The official explanation was that since the phone was not launched simultaneously in all the countries, some retail vendors (in countries where it was not then launched) bought the phone in bulk, unlocked the bootloader and installed various apps (in addition to the pre-installed bloatware) including malware and then sold them in retail. It was to avoid this and to ensure that a genuine owner is using the phone before allowing the unlock that they devised this method.
These all sound so horrible but I am still using my phone because motorola which you champion cannot build a decent phone like pocophone offers.
oppo and vivo didnt have ubl , asus and samsung void waranty, huawei not cheap to ubl.. thank god poco only have to wait 72h, you gibe ip ur privacy when usinh android, if u dont want data colection from vendor, use apple..
Related
You have got the Android phone and have all your personal data stored in that which includes your passwords and all personal information which is too sensitive. Just like you think your Android phone is a precious belonging to you, same is the case with the data it holds. So what if your phone is stolen or hacked by someone or it is lost?
Each day, you like some app and try to get it for your Android phone. Well that is nice but even that lets your security to lose a bit of ground. To secure your Android phone’s data, you need to have a good knowledge about enhancing the security options. Also, you got to implement some things that shield you in the times when you can get your data to fall in some stranger’s basket. Learn how you secure it.
1. Use SE Android OS
When you get some app downloaded to your phone then you give it some or more access as well. This lessens up your security. To help you National Security Agency (NSA) has created a new SE Android OS. This is a version of Android OS which is much secure and locks your phone and data exploitation by the unknown.
2. Lock your Android phone
You can lock your Android phone by setting a passcode. To do so, go to the ‘settings menu’ and tap on ‘location and security’. You will see there an option to ‘set unlock pattern’. By locking your phone properly none can use it without your prior permission and your data stays secured and intact.
3. Advanced security options
MobileDefense, TenCube and WaveSecure are few good advanced security options that you can choose from. If you lose your phone or it is stolen away then in that case you get an option to wipe off all the personal data by using these kinds of app only.
4. Apps that secure your Android phone
Get your Android phone protected from web intruders by selecting powerful anti-malware apps like Lookout. With such an app you can be rest assured that your security will remain intact when you are browsing, using your Android phone.
5. SIM card lock
In an addition to the prior phone lock mentioned in this article, you must choose for a SIM card lock by setting up a PIN code. This will secure all your contact information and the data usually stored in a SIM.
6. Third party protection
Programs and software like AVG, Norton, Trend Micro help you in securing your data in various many ways. It is better to get the premium protection cover rather than going for the free ones because a premium one provides you with a complete protection cover.
7. Full device backup
There are apps like Titanium Backup which can help you in getting a clone or backup of your phone onto the hard disk of your computer. In the case of theft or severe physical damage to your phone, backup helps you to get everything as it was.
8. Dropbox
Dropbox is cloud storage software which works with Android OS and then gives you complete access over your data on the go. One has to sign up for a Dropbox account and then save all essential and needy files in it. Without a Dropbox, you cannot thing of the backup of your data.
9. How Google helps in securing
When you have an Android phone that means, everything you use from an email to apps and contact information; all this stays with your [email protected] account and address. Simply add that to your new phone and import everything from there to the new device.
10. Secure data with AndroidLost
Go to the Android Market and search there for AndroidLost. When you find this application, install it to your Android phone (this is free for all Android gadgets and devices). By logging in with your Google account to the AndroidLost website you have full command over your data, even when the phone is not with you.
11.MY XPERIA
If you happen to misplace your Xperia™ device, the my Xperia service helps you to find it and protect private information by locking your device or even deleting all information on your device. The my Xperia service is offered by Sony Mobile Communications free of charge.
The my Xperia service uses the Google account on your device. If you are using several Google accounts on your device, you can sign in with any of them. You can connect several devices to my Xperia, using the same Google account.
For the my Xperia service to work, your smartphone or tablet must be turned on and has to have a working data connection.:angel:
Nice tips to get a bond phone
Can u elaborate first point??
drsanket_xperia_u said:
Nice tips to get a bond phone
Can u elaborate first point??
Click to expand...
Click to collapse
defn by wiki-
What is SE for Android?
Security Enhancements for Android™ (SE for Android) is a project to identify and address critical gaps in the security of Android. Initially, the project is enabling the use of SELinux in Android in order to limit the damage that can be done by flawed or malicious apps and in order to enforce separation guarantees between apps. However, the scope of the project is not limited to SELinux.
SE for Android also refers to the reference implementation produced by the project. The current reference implementation provides a worked example of how to enable and apply SELinux at the lower layers of the Android software stack and provides a working demonstration of the value provided by SELinux in confining various root exploits and application vulnerabilities.
hope it helped....
is there an easy way to see if youre phone is getting hacked/virus? like a tools. because sometimes after 2-3 months my phone become slower and slower (need to reflash it again) and i use the phone just for daily basis like call, internet, messaging.
noel_din said:
is there an easy way to see if youre phone is getting hacked/virus? like a tools. because sometimes after 2-3 months my phone become slower and slower (need to reflash it again) and i use the phone just for daily basis like call, internet, messaging.
Click to expand...
Click to collapse
it shoud nt hapn if rooted use avast security..:angel:
C00ldUdE8655 said:
it shoud nt hapn if rooted use avast security..:angel:
Click to expand...
Click to collapse
rooted use avast security? protect with avast you mean? i do that, but my sola will slow down to the point i want to hit a wall with it :laugh:
Great tips man...like it
Sent From C6603 Using xda premium
Encang_Rojali said:
Great tips man...like it
Sent From C6603 Using xda premium
Click to expand...
Click to collapse
liked it..prezz **THANKS**
C00ldUdE8655 said:
You have got the Android phone and have all your personal data stored in that which includes your passwords and all personal information which is too sensitive. Just like you think your Android phone is a precious belonging to you, same is the case with the data it holds. So what if your phone is stolen or hacked by someone or it is lost?
Each day, you like some app and try to get it for your Android phone. Well that is nice but even that lets your security to lose a bit of ground. To secure your Android phone’s data, you need to have a good knowledge about enhancing the security options. Also, you got to implement some things that shield you in the times when you can get your data to fall in some stranger’s basket. Learn how you secure it.
1. Use SE Android OS
When you get some app downloaded to your phone then you give it some or more access as well. This lessens up your security. To help you National Security Agency (NSA) has created a new SE Android OS. This is a version of Android OS which is much secure and locks your phone and data exploitation by the unknown.
2. Lock your Android phone
You can lock your Android phone by setting a passcode. To do so, go to the ‘settings menu’ and tap on ‘location and security’. You will see there an option to ‘set unlock pattern’. By locking your phone properly none can use it without your prior permission and your data stays secured and intact.
3. Advanced security options
MobileDefense, TenCube and WaveSecure are few good advanced security options that you can choose from. If you lose your phone or it is stolen away then in that case you get an option to wipe off all the personal data by using these kinds of app only.
4. Apps that secure your Android phone
Get your Android phone protected from web intruders by selecting powerful anti-malware apps like Lookout. With such an app you can be rest assured that your security will remain intact when you are browsing, using your Android phone.
5. SIM card lock
In an addition to the prior phone lock mentioned in this article, you must choose for a SIM card lock by setting up a PIN code. This will secure all your contact information and the data usually stored in a SIM.
6. Third party protection
Programs and software like AVG, Norton, Trend Micro help you in securing your data in various many ways. It is better to get the premium protection cover rather than going for the free ones because a premium one provides you with a complete protection cover.
7. Full device backup
There are apps like Titanium Backup which can help you in getting a clone or backup of your phone onto the hard disk of your computer. In the case of theft or severe physical damage to your phone, backup helps you to get everything as it was.
8. Dropbox
Dropbox is cloud storage software which works with Android OS and then gives you complete access over your data on the go. One has to sign up for a Dropbox account and then save all essential and needy files in it. Without a Dropbox, you cannot thing of the backup of your data.
9. How Google helps in securing
When you have an Android phone that means, everything you use from an email to apps and contact information; all this stays with your [email protected] account and address. Simply add that to your new phone and import everything from there to the new device.
10. Secure data with AndroidLost
Go to the Android Market and search there for AndroidLost. When you find this application, install it to your Android phone (this is free for all Android gadgets and devices). By logging in with your Google account to the AndroidLost website you have full command over your data, even when the phone is not with you.
11.MY XPERIA
If you happen to misplace your Xperia™ device, the my Xperia service helps you to find it and protect private information by locking your device or even deleting all information on your device. The my Xperia service is offered by Sony Mobile Communications free of charge.
The my Xperia service uses the Google account on your device. If you are using several Google accounts on your device, you can sign in with any of them. You can connect several devices to my Xperia, using the same Google account.
For the my Xperia service to work, your smartphone or tablet must be turned on and has to have a working data connection.:angel:
Click to expand...
Click to collapse
OK, a good comprehensive list...can you give a poiner to start working with SELinux...something that will help me start developing policies or something?
please add the source. ive read the same post somewhere
Nice tips bro, like it!
Can someone point me to a thread/blog for guiding me to completely de-google an android phone(except the OS itself of course)? Basically I have a Samsung S8+ \ that I don't use anymore and I would like to give to a relative in China. With my past experience, I had no problem by-passing the GFW for getting the phones up to date when I visit, but for an average user and long term use inside mainland China, an android phone with default google services installed makes it almost unusable since all the google services are blocked within China.
If can be done without root, that would be ideal(adb?). If it must rooted, then that's OK too. thank you for your input!
I don't know if it's still allowed to do that,
but considered disabling the google service. Google, Youtube, Google +, Hangouts, Photos, Drive, etc...
Anyone who uses a China Mainland rom of Emui Huawei phone with google apps should at this point be used to glitches, location history unusable, google now screen doesnt refresh, google backup disabled in favour of emui cloud, broken safety net in Betas, spotty Google pay integration... The list goes on.
But the most annoying problem imo is the inability to use Google assistant in voice match. Thanks to some mysterious problem most likely related to huaweis voice assistant (hivoice, yoyo, emy are basically all the same thing). Google assistant voice match is disabled and greyed out for Chinese mainland emui roms. I can say this affect all phones because I have personally tested 5 (mate s, mate 9 pro, p10 plus, P20 pro, mate 20 pro) running emui 4 to emui 9.
No conventional debugging method on Google's forums, from uninstalling to factory reset (short of replacing emui with a new custom rom, I tried that too) can fix this issue.
This issue seemed to have not gained as much attention as it needs as people seems to frequently mistake this for other, easily fixable issues and post their greviences under those posts, and are promptly directed to common, not useful debug steps.
This is a very detrimental problem for an otherwise relatively enjoyable hardware experience, and despite the amount of people experiencing this issue (people post about this a lot in Google's product forums but rarely gets a proper response). There has been no real solution or explanation.
Hi,
I have already posted it in another post. I noticed on my Honor View 10 that there is a connection between the Private Space and the Google Assistant. Whenever I have used the private space and then switched back to the normal account, the Assistant will then click out. It was also reproducible on my phone, but I can not say how it is related. Since the soft and hardware of the Huawei and Honor phones are similar, I thought it helps here. I have now deleted the private space and restarted the phone. After I have not used private space after the last reboot, the assistant works since yesterday without problems.
Regards Ralf.
Translate with Google
FricklerB said:
Hi,
I have already posted it in another post. I noticed on my Honor View 10 that there is a connection between the Private Space and the Google Assistant. Whenever I have used the private space and then switched back to the normal account, the Assistant will then click out. It was also reproducible on my phone, but I can not say how it is related. Since the soft and hardware of the Huawei and Honor phones are similar, I thought it helps here. I have now deleted the private space and restarted the phone. After I have not used private space after the last reboot, the assistant works since yesterday without problems.
Regards Ralf.
Translate with Google
Click to expand...
Click to collapse
On chinese roms (model AL00 and Al10 huawei) google assistant voice activition is broken in general. Third party apps do not play well with private space, as it is essentially like a sandbox environment.
FricklerB said:
Hi,
I have already posted it in another post. I noticed on my Honor View 10 that there is a connection between the Private Space and the Google Assistant. Whenever I have used the private space and then switched back to the normal account, the Assistant will then click out. It was also reproducible on my phone, but I can not say how it is related. Since the soft and hardware of the Huawei and Honor phones are similar, I thought it helps here. I have now deleted the private space and restarted the phone. After I have not used private space after the last reboot, the assistant works since yesterday without problems.
Regards Ralf.
Translate with Google
Click to expand...
Click to collapse
Huawei and honor are the same thing, hardware and software. However there is a massive difference in terms of software between mainland China and outside huawei/honor software, including lack of launcher changing, hivoice which replaces Google assistant, lack of location sharing capability as huawei does not use Google location services in China software, as well as more bloatware and less privacy. The screen time management on China roms also activates a Chinese vpn that essentially blocks everything that is also blocked in China, fb, Google the whole shabam.
Hi,
Just joined a new company that requires Company Portal to access Outlook email and other apps on my phone.
Evidently even if you manage to hide root from Company Portal, a major requirement is having an encrypted device with Company Portal.
In order to get rooted 2 years ago, I ran Disable_Dm-Verity_ForceEncrypt during the TWRP setup process so my rooted V30 is not encrypted.
Is there any way to restore encryption now without losing my current stock rom settings and data and maintain root?
I see in LG Settings there is an option to Encrypt Phone and SD Card. Will this suffice so I can maintain root?
If not, is there a way to root and install a TWRP LG Pie Rom zip without disabling encryption via Disable_Dm-Verity_ForceEncrypt?
Or is it impossible to root and use Company Portal with the LG V30?
Thanks in advance!
Drew
drewcu said:
Hi,
Just joined a new company that requires Company Portal to access Outlook email and other apps on my phone.
Evidently even if you manage to hide root from Company Portal, a major requirement is having an encrypted device with Company Portal.
In order to get rooted 2 years ago, I ran Disable_Dm-Verity_ForceEncrypt during the TWRP setup process so my rooted V30 is not encrypted.
Is there any way to restore encryption now without losing my current stock rom settings and data and maintain root?
I see in LG Settings there is an option to Encrypt Phone and SD Card. Will this suffice so I can maintain root?
If not, is there a way to root and install a TWRP LG Pie Rom zip without disabling encryption via Disable_Dm-Verity_ForceEncrypt?
Or is it impossible to root and use Company Portal with the LG V30?
Thanks in advance!
Drew
Click to expand...
Click to collapse
My only solution to this problem was to always use webaccess for my Office365 account. They required the portal to use Outlook, and part of that requirement allowed them to wipe my phone whenever they wanted. It's my phone, so I guess I won't use their email on my phone.
Sounds like your company has yet another behind-the-times IT department (like mine). Although mine is also exceptionally incompetent. They left the IMAP server open and available to anyone, so I simply used that with my GMail account instead. It did require me to allow them admin access to the phone to wipe the device (though I think they can only wipe the email) but it worked. They finally got modern and are using 365 so now it doesn't need these extra things. You might want to see if you can wait until they wake up and/or see if there is a server you can connect to. I found mine because, due to their incompetence, they let iPhones use the native mail app via the IMAP server, but forced Android to use some garbage 3rd party software for it instead of GMail. In both cases, the IMAP server was easily seen and setup.
I also have a company phone, so I don't really care if they can wipe it. Again, if I was going to take data from them, I'd do it before I announced I was leaving like any reasonably-intelligent person... so wiping accomplishes nothing. But, again, these IT departments are really dumb and incompetent...
To answer your initial question, I don't know if there's a way to re-enable encryption... but I also don't think that this is something that they can detect anyway. I'm thinking it may be something else they're tripping over. You may consider installing Magisk, and then using it's HIDE feature to see if you can hide the typical "signs" of rooting/etc. It may be good enough to get you working. If it doesn't you simply remove Magisk again (or just stop using it)?
Thanks @ldeveraux and @schwinn8 for the replies!
I know we use Office 365 but I'll have to ask about web access to see if that is possible. It's my phone and supposedly it's "not required" that I install Company Portal/Outlook/Teams on my phone, but I would be the only one at the firm not doing that and I am a new hire so... kind of a bad look so soon. I am not really comfortable with them being able to wipe my phone either, but that wasn't mentioned to me... yet.
Also would have to ask about IMAP, but I doubt it. No company phones either which is fine.
Pretty sure it is the encryption (or lack thereof in my case) that is the issue. I already use Magisk v22 and Hide all signs of Company Portal and pass Safetynet. On another XDA thread where Company Portal is discussed, I followed the suggested steps to no avail:
1) Install Company Portal V5.0.5067.0
2) Magisk Hide ALL of Company Portal checkboxes
3) Reboot
4) Still pass SafetyNet
5) Launch Company Portal
While the app doesn't specify the encryption as to why it cannot get me to the login screen, that's the only conclusion I can reach at the moment.
Did either of you try or look into encryption built into the LG/Android Settings menu? I don't want to do that unless I know of someone with success with it, but am curious if that would allow root via Magisk Hide, encryption, and Company Portal.
Thanks!
Drew
No I stopped carrying when they wanted permission to wipe. If the company was paying for the phone, that's one thing. If I'm using my personal phone for company use, that doesn't fly.
I realize this doesn't answer your question at all, but it's food for thought!
ldeveraux said:
No I stopped carrying when they wanted permission to wipe. If the company was paying for the phone, that's one thing. If I'm using my personal phone for company use, that doesn't fly.
I realize this doesn't answer your question at all, but it's food for thought!
Click to expand...
Click to collapse
Carrying? Or did you mean caring?
drewcu said:
Carrying? Or did you mean caring?
Click to expand...
Click to collapse
Caring. I don't own a firearm.
ldeveraux said:
Caring. I don't own a firearm.
Click to expand...
Click to collapse
Lol got it. Just making sure I understood what you meant.
Assume you didn't look into the LG rom based encryption then?
drewcu said:
Lol got it. Just making sure I understood what you meant.
Assume you didn't look into the LG rom based encryption then?
Click to expand...
Click to collapse
No at that point I gave up
Hopefully you'll get some help here, because I'd still like to be able to actually use Outlook on my phone!
So, a quick search says that there are modules available and other things that need to be tried. One further thing is to hide root from various Google modules. I remember hearing that for some other apps... that you had to hide root from Google services. I also remember hearing that, in some cases, you have to clear data for apps after the hide, because they apparently save the rooted-status in their own data.
Basically, I doubt encryption is the issue... root is usually the problem and can be a bit tricky to hide properly. You just have to try things. I have never seen any app fail to work because encryption is not available... it's always a root-detection issue.
As for the IMAP thing, the point there is to use the settings you find elsewhere to access email. You're not asking IT for permission or info... you just need to find it. Most Microsoft-based IT places I have worked with have zero clue that this is open and offered, so once you find it it's just a matter of plugging in the right info.
As for the web-interface, again, my company (for example) doesn't tell us that we can use the Outlook app, but it works with no tricks whatsoever. Plug in your company account info and it figures out how to connect.
FYI, the module I mentioned above is referenced here: https://forum.xda-developers.com/t/...ne-company-portal-hider-intune-hider.3780451/ - no idea if this is necessary or even the latest version...
schwinn8 said:
So, a quick search says that there are modules available and other things that need to be tried. One further thing is to hide root from various Google modules. I remember hearing that for some other apps... that you had to hide root from Google services. I also remember hearing that, in some cases, you have to clear data for apps after the hide, because they apparently save the rooted-status in their own data.
Basically, I doubt encryption is the issue... root is usually the problem and can be a bit tricky to hide properly. You just have to try things. I have never seen any app fail to work because encryption is not available... it's always a root-detection issue.
As for the IMAP thing, the point there is to use the settings you find elsewhere to access email. You're not asking IT for permission or info... you just need to find it. Most Microsoft-based IT places I have worked with have zero clue that this is open and offered, so once you find it it's just a matter of plugging in the right info.
As for the web-interface, again, my company (for example) doesn't tell us that we can use the Outlook app, but it works with no tricks whatsoever. Plug in your company account info and it figures out how to connect.
FYI, the module I mentioned above is referenced here: https://forum.xda-developers.com/t/...ne-company-portal-hider-intune-hider.3780451/ - no idea if this is necessary or even the latest version...
Click to expand...
Click to collapse
Thanks for the suggestions! I actually have tried different modules without success both for EdXposed (Security Bypass for Company Portal with CP version 5.0.3013.0 and Bypass Exchange Policies). The closest I got was with CP 5.0.3013.0 where I could enter my credentials but then wasn't able to agree to the Terms and Conditions which is a prerequisite and got denied. The module you linked is no longer needed if using Magisk v22 with Magisk Hide according to people in the thread.
Have also tried the Outlook app, Outlook web access, Gmail, IMAP, POP3 -- all smartly locked down tight for compliance reasons by our IT. Just says to enroll with Company Portal after entering credentials.
Pretty sure the Magisk Hide route would work with V5.0.5067.0 if my device was encrypted. Company Portal checks whether your device is encrypted supposedly, so either you have to actually be encrypted or find a way around that. I am willing to be encrypted if I can still be rooted...
Not sure where to go from here to get it working without an encrypted device... but thanks for the post.
As I recall, Xposed is not really working or functional these days. The module I linked to is a Magisk module. Did you follow those directions, because it sounds like you didn't.
It sounds like you don't want to believe me... that's fine. I believe the answers are out there and it's just a root issue. You probably just need to do more reading and searching. I'm going to give up since you don't seem to want to hear it from me, so good luck...
If you find a solution, do let people know on this thread so the matter can be closed/completed.
I remember the other reason I stopped trying to use the Company Portal. They need permission to wipe my phone, which obviously I'm not cool with. Whenever I disable the Company Portal, mail stops working. That's reason enough!
schwinn8 said:
As I recall, Xposed is not really working or functional these days. The module I linked to is a Magisk module. Did you follow those directions, because it sounds like you didn't.
It sounds like you don't want to believe me... that's fine. I believe the answers are out there and it's just a root issue. You probably just need to do more reading and searching. I'm going to give up since you don't seem to want to hear it from me, so good luck...
If you find a solution, do let people know on this thread so the matter can be closed/completed.
Click to expand...
Click to collapse
Yes I am aware that the module you linked is for Magisk. If you go to the OP, all the text is struck through because the module is no longer necessary as I stated previously.
[MODULE] Microsoft Intune Company Portal Hider (Intune Hider)
Introduction: Simple Module To Hide The Root From Microsoft Intune Company Portal. - After The Installation & 1st Reboot, It Hides The Rooting & Disables Itself [P.S. Disabling Itself For Some Versions] - Enabling This Module From Magisk Manager...
forum.xda-developers.com
kb8no said:
It is easy to be confused. The "module" from the OP was needed before but is now obsolete since Magisk has gained the necessary functionality alone without the "module". There is no "module" in Magisk. Now go back and read the past posts over 2 months. First you hide Magisk so it passes safety net. Then you go into superuser MagiskHide, go into the app (eg Portal) and check everything. You need to understand that they updated Portal so you need to downgrade it so Portal will work again. You need to understand to use latest Magisk and Magisk changed. Not surprising you are confused. Now perhaps you have figured out the basics and the details will make sense.
Click to expand...
Click to collapse
So I followed the steps on page 23 of that thread using Intune Company Portal V5.0.5067.0:
[MODULE] Microsoft Intune Company Portal Hider (Intune Hider)
Introduction: Simple Module To Hide The Root From Microsoft Intune Company Portal. - After The Installation & 1st Reboot, It Hides The Rooting & Disables Itself [P.S. Disabling Itself For Some Versions] - Enabling This Module From Magisk Manager...
forum.xda-developers.com
IlyaKol said:
Good call on the GitHub ticket.
For anyone reading, this is the process I followed:
1) Uninstall the existing Intune Company Portal
2) Reboot
3) Install the APK listed above or from another source (I used APK Pure). DO NOT LAUNCH INTUNE!
4) Before launching, go into Magisk and make sure to hide ALL of it as well as all of Outlook, OneNote, OneDrive, Teams, etc. (whatever uses your company credentails)
5) Launch InTune and set it up.
6) Disable auto-updates of the app as he stated in Google Play Store.
7) Profit.
Click to expand...
Click to collapse
The result is I am still stuck on the "Open the Intune App" screen... No other error messages related to rooting, but cannot even get to log in or download Outlook or Teams. Have tried downloading the Intune App from the Play Store and that tells me to open Company Portal... so going in circles... I'm told I need to only use Company Portal from our IT firm.
I went through the same Magisk module thread and found others talking about not having encryption, and they are in the same position as I am -- following the steps or using the Magisk module (before Magisk v22) and still not getting CP to work.
Thus I am 99.9% sure I cannot use CP because I don't have encryption. You don't have to believe me, but I have tried everything I can think of save for using LG's Encrypt Phone feature... Would do it if I got confirmation I could stay rooted, not lose my data/settings, and then use Company Portal.
But yes, I absolutely would post the solution here if I find it!
Thanks anyway.
I'm rooted and have long had corporate email (two different companies) on a paid app called "Nine". First company was Fortune 100 global media company, and 2nd (past 3 years) is smaller but still has aggressive IT policies. Neither paid for my phone. I specifically remember with the first having to agree they could wipe the phone if it was lost -- but I think due to me being rooted they wouldn't be able to.
Nine - Email & Calendar - Apps on Google Play
Nine is a full-fledged and intuitive email app which supports Exchange and IMAP
play.google.com
ChazzMatt said:
I'm rooted and have long had corporate email (two different companies) on a paid app called "Nine". First company was Fortune 100 global media company, and 2nd (past 3 years) is smaller but still has aggressive IT policies. Neither paid for my phone. I specifically remember with the first having to agree they could wipe the phone if it was lost -- but I think due to me being rooted they wouldn't be able to.
Nine - Email & Calendar - Apps on Google Play
Nine is a full-fledged and intuitive email app which supports Exchange and IMAP
play.google.com
Click to expand...
Click to collapse
Just tried Nine and it also tells me after entering my credentials that I need to use Company Portal (just like Outlook and Web Access).
Do these two companies you worked for use Intune Company Portal to manage policies?
drewcu said:
Just tried Nine and it also tells me after entering my credentials that I need to use Company Portal (just like Outlook and Web Access).
Do these two companies you worked for use Intune Company Portal to manage policies?
Click to expand...
Click to collapse
I just installed portal and outlook, added both as admin or whatever it's called, and have a fully functioning inbox. I don't know if I'll leave it like this for the reasons I mentioned, but it works. I have the latest twrp, latest magisk, and adguard installed. I have no clue if I'm encrypted or not, how would I check? But I was trying to use the older version of Portal and it kept looping, so I installed the latest from the play store and we're up and running.
@ChazzMatt do you really think they can't wipe if they so desire? How could we confirm that? I surely don't want to give them that ability considering if you disable their permissions it stops working completely.
ldeveraux said:
I just installed portal and outlook, added both as admin or whatever it's called, and have a fully functioning inbox. I don't know if I'll leave it like this for the reasons I mentioned, but it works. I have the latest twrp, latest magisk, and adguard installed. I have no clue if I'm encrypted or not, how would I check? But I was trying to use the older version of Portal and it kept looping, so I installed the latest from the play store and we're up and running.
@ChazzMatt do you really think they can't wipe if they so desire? How could we confirm that? I surely don't want to give them that ability considering if you disable their permissions it stops working completely.
Click to expand...
Click to collapse
For Nine I only needed the email server name.
For the previous Fortune 100 company I worked for, it was almost 4 years ago so I don't remember all the details but I remember granting them the privilege but I don't remember adding them as an admin.
ldeveraux said:
I just installed portal and outlook, added both as admin or whatever it's called, and have a fully functioning inbox. I don't know if I'll leave it like this for the reasons I mentioned, but it works. I have the latest twrp, latest magisk, and adguard installed. I have no clue if I'm encrypted or not, how would I check? But I was trying to use the older version of Portal and it kept looping, so I installed the latest from the play store and we're up and running.
@ChazzMatt do you really think they can't wipe if they so desire? How could we confirm that? I surely don't want to give them that ability considering if you disable their permissions it stops working completely.
Click to expand...
Click to collapse
Company Portal didn't used to work for you, correct? What changed? Can you please list your steps this time?
I think to check encryption you use Termux and enter 'getprop ro.crypto.state' -- mine says unencrypted.
One other question is what version of Twrp are you using? I'm using one from 2 years ago -- 3.2.3 and never wanted to bother with the Pie one 3.3 or whatever is latest... Might have something to do with it...
Hello. I recently bought a Huawei P40 Lite, without GMS and installed the apps using googlefier. Everything goes well except some errors that are fixed by swiping and blocking them, and one bigger issue: location. Some local apps (the phone is for my mom so she has a lot of shopping apps for local supermarkets with discounts, cards, vouchers etc) require you to set your location through google, so instead of the app showing the map and allowing you to choose your store, you're stuck at a "Google Play services are updated" screen. Is there any fix for this?
How it looks on my P20 Lite (with factory GMS)
How it looks on my P40 Lite (with googlefier GMS)
Also, does anyone know any better solution of installing the google services? As said, this phone is for my mom and I really don't want to have to fix something every week, so I'm up to even root and mess with things so I can have a more permanent fix.
Welcome to XDA
Yes, well... no idea what the solution is but there's no way I leave that junkware run on my phone.
With a user like that always keep in mind it may be malware, a virus or rootkit causing it.
An Android is only as secure as its user...
blackhawk said:
Welcome to XDA
Yes, well... no idea what the solution is but there's no way I leave that junkware run on my phone.
With a user like that always keep in mind it may be malware, a virus or rootkit causing it.
An Android is only as secure as its user...
Click to expand...
Click to collapse
Well it's not junk or malware. It's a genuine app from the playstore for a supermarket chain named Lidl. She's had it for months, you basically get a qr code and you have to scan that code at the cash register to get some discounts. The app shows her each week what products have discounts and what products are gonna have discounts next week. The app is legit.
As for the user, yeah I agree my mom isn't the most careful out there but i managed to teach her to not install or press any buttons and everytime she gets a weird message or notification she comes to me to figure out what it is. Even when a normal app requires a permission, for example "facebook requires permission to take pictures", she comes to me, so I'm pretty sure she'll be fine with it.
Is there any proper way of installing GMS without having these types of issues even if it involves rooting or god knows what else? At the price of this phone there's nothing better than it and I don't really want to downgrade to a bad samsung just for that.
Just because it's on Playstore doesn't make it safe
FB? Bah-ha-ha-ha.... is pure social malware.
Purveyors of disinformation and far, far worse.
No way that be on my phone. I punched out of FB 13 years ago after a month... the puppet cut the strings.
Meh, it's a lick on you... do what you will, but actions have consequences.
blackhawk said:
Just because it's on Playstore doesn't make it safe
FB? Bah-ha-ha-ha.... is pure social malware.
Purveyors of disinformation and far, far worse.
No way that be on my phone. I punched out of FB 13 years ago after a month... the puppet cut the strings.
Meh, it's a lick on you... do what you will, but actions have consequences.
Click to expand...
Click to collapse
It's not that deep. Like I said, all she does is talk about flowers, plants and work-related subjects. I taught her how not to fall in the hands of scammers and how she should come and show me everytime she gets any weird request. She doesn't download any apps without me, doesn't access weird websites, i think it's safe enough for a mature person.
Yes, I know that it isn't safe just because it's on the playstore, I'm just trying to tell you that it's a legit app, developed my the supermarket chain that has over 11k stores in Europe and there isn't any sensitive information apart from her name and a qr code that she has to scan, instead of the typical physical discount card.
On another note, since the topic has been moved to another category, does anybody have any idea on how to fix my issue?
@goldieczr did you find a solution?
I've got the exact same problem on my Hisense a6l.
I got these files (in the rar) from an official seller. With these you can install google service and magisk.
Both files are executable zips that can be opend. All you need is the password from the text file.
Same thing with the installation, just copy paste the passwords when ask.