With kudos to @Captain_Throwback and company, I was able to install the latest OTA (January security update) for the M9 despite being rooted (systemless, phh/Magisk) and having TWRP 3.0.3-0 installed - just tapped 'install' when prompted and off we went (yes, I'll have to re-install TWRP, but still, wow).
My phone is encrypted and during the update I noticed that I was not prompted to decrypt it. Instead, I saw the message "Device decrypted with default password" come up. This is new to me, and a little disconcerting - but perhaps this is normal for this kind of update process? I'm unfamiliar with Linux in general and the command-line side of Android in particular, but if someone could tell me a bit about this, I'd appreciate it - is this normal behavior? And if so, how is it not a security risk (ie, a backdoor around my password/encryption)?
Thanks,
Computerslayer
That just means you don't have a password set up "on boot" in Android, which means it's encrypted with the default password, which is simply "default_password". So TWRP applies that and is able to decrypt your device automatically. If you want to be prompted to enter a password in TWRP, add a password "on boot" in Android.
Captain_Throwback said:
That just means you don't have a password set up "on boot" in Android, which means it's encrypted with the default password, which is simply "default_password". So TWRP applies that and is able to decrypt your device automatically. If you want to be prompted to enter a password in TWRP, add a password "on boot" in Android.
Click to expand...
Click to collapse
Ah! That makes sense. It seems I disabled this when I enabled Lockdown Pro as an accessibility service. I've got the password back in place for boot now. Thank you.
Thank you also for the latest version of TWRP and the ability to install OTAs with TWRP installed. With the advent of monthly security updates, it's nice to be able to have TWRP support installing them easily.
computerslayer said:
Ah! That makes sense. It seems I disabled this when I enabled Lockdown Pro as an accessibility service. I've got the password back in place for boot now. Thank you.
Thank you also for the latest version of TWRP and the ability to install OTAs with TWRP installed. With the advent of monthly security updates, it's nice to be able to have TWRP support installing them easily.
Click to expand...
Click to collapse
No problem - just make sure you manually install that firmware!
Captain_Throwback said:
No problem - just make sure you manually install that firmware!
Click to expand...
Click to collapse
Yeah, I've gotta still do that.... (pardon me while go re-read your instructions again)
Related
Hi fellows,
So i bought that S810 beast and i am fully enjoying it
Only one of a sudden, i found a bug which i thought it might not be that annoying, but it turned out to be freaking me out
I can not remove the lockscreen protection back to the normal slide lockscreen for an unknown reason that i failed to discover.
It says,
Disabled by administrator, encryption policy or credential storage
Click to expand...
Click to collapse
I have nothing in the administrators, my internal storage is not encrypted and i haven't touched that credential thing!
So i guess that the only way out is to "clear the credential storage"
Now the question is, is there any way out of this problem rather than factory reseting the phone or clearing the credentials?? If not, then can anybody tell me what are the side effects of deleting the credential certificates ? AFAIK it affects VPN stuff, which i never used on my phone and i am sure i won't use it! Are there any other side effects?
P.S. I am not rooted no need to void my warranty, yet
Thank You!
Did you set up your phone to sync with an Exchange account?
kwolf said:
Did you set up your phone to sync with an Exchange account?
Click to expand...
Click to collapse
What do u mean by "Exchange account" ??!
I have my google account, whatsapp account and a facebook account to be in the sync ...
Microsoft exchange email. Usually used for business.
kwolf said:
Microsoft exchange email. Usually used for business.
Click to expand...
Click to collapse
No i don't have microsoft exchange account.
Here is my list of accounts i have in the attached screenshot
Anyone can help me with that ?
If no one knows the culprit
Maybe some one can tell me what are the side effects of clearing the credential storage ??!
What apps are granted device administration privileges? Maybe here would be a good start to look at...
ademmer said:
What apps are granted device administration privileges? Maybe here would be a good start to look at...
Click to expand...
Click to collapse
AcDisplay, Greenify, Android device manager only
Nothing special
Screenshot attached!
Try removing AcDisplay from your device.
Might be AcDisplay indeed. Have you tried to remove it?
fernandezhjr said:
Try removing AcDisplay from your device.
Click to expand...
Click to collapse
ademmer said:
Might be AcDisplay indeed. Have you tried to remove it?
Click to expand...
Click to collapse
Well this issue was there before i install the apps
Only android device manager was there once i detected the incident
However i will try to remove them and see if there is anything changed
You could also reboot into safe mode, see if that solves the problem (which would indicate that an installed app is the source). To go into safe mode, press and hold the power button until the power menu appears and the touch & hold 'power off' until prompted to reboot into safe mode.
computerslayer said:
You could also reboot into safe mode, see if that solves the problem (which would indicate that an installed app is the source). To go into safe mode, press and hold the power button until the power menu appears and the touch & hold 'power off' until prompted to reboot into safe mode.
Click to expand...
Click to collapse
No luck
Should i just clear the credential certificates ?? What are the side effects??
Mostafa Wael said:
Hi fellows,
So i bought that S810 beast and i am fully enjoying it
Only one of a sudden, i found a bug which i thought it might not be that annoying, but it turned out to be freaking me out
I can not remove the lockscreen protection back to the normal slide lockscreen for an unknown reason that i failed to discover.
It says,
I have nothing in the administrators, my internal storage is not encrypted and i haven't touched that credential thing!
So i guess that the only way out is to "clear the credential storage"
Now the question is, is there any way out of this problem rather than factory reseting the phone or clearing the credentials?? If not, then can anybody tell me what are the side effects of deleting the credential certificates ? AFAIK it affects VPN stuff, which i never used on my phone and i am sure i won't use it! Are there any other side effects?
P.S. I am not rooted no need to void my warranty, yet
Thank You!
Click to expand...
Click to collapse
Navigate to /data/system/password or gesture (Pattern) and delete that entry depending on what type of password you have, reboot done.
If you are unable to get into the phone you will be able to do this using the file manager within TWRP.
PS: Not 100% if it'll fix the isse due to an app locking down the phone but it certainly removes the pin / pattern or password from your phone, so should work.
dladz said:
Navigate to /data/system/password or gesture (Pattern) and delete that entry depending on what type of password you have, reboot done.
If you are unable to get into the phone you will be able to do this using the file manager within TWRP.
PS: Not 100% if it'll fix the isse due to an app locking down the phone but it certainly removes the pin / pattern or password from your phone, so should work.
Click to expand...
Click to collapse
I am not rooted and i have nothing custom installed
Can this be done via adb ?
Mostafa Wael said:
I am not rooted and i have nothing custom installed
Can this be done via adb ?
Click to expand...
Click to collapse
Ah i see, sorry mate, then no you need root access to be able to see lower level files.
In all fairness, I would say to back up your data and flash another ruu / rom, or even factory reset the device and be careful what you install, I'm assuming that it's something to do with an app you have installed or an email which needs to lock down your device.
I would do that, back up, wipe and go lightly with the installing of apps until you find the culprit, if that doesn't work then I would flash another RUU.
But I imagine it will.
dladz said:
Ah i see, sorry mate, then no you need root access to be able to see lower level files.
In all fairness, I would say to back up your data and flash another ruu / rom, or even factory reset the device and be careful what you install, I'm assuming that it's something to do with an app you have installed or an email which needs to lock down your device.
I would do that, back up, wipe and go lightly with the installing of apps until you find the culprit, if that doesn't work then I would flash another RUU.
But I imagine it will.
Click to expand...
Click to collapse
Ohh, then i need some free time
Thanks for the help
As a workaround, i used smart lock
I set up home as trusted place and turned on body detection
Sweet! Password when needed only
Mostafa Wael said:
Ohh, then i need some free time
Thanks for the help
As a workaround, i used smart lock
I set up home as trusted place and turned on body detection
Sweet! Password when needed only
Click to expand...
Click to collapse
Nice one.
click thanks instead of saying it fella Glad you're back up and running.
Actually it turned out to be even better with Smart Lock options like trusted devices "when connected to my bluetooth speakers/handsfree" and trusted place "put my home address here" and also turned on the "body detection"
In this way i am prompted to type my PIN only when needed :good:
Thanks for the help guys
Mostafa Wael said:
Actually it turned out to be even better with Smart Lock options like trusted devices "when connected to my bluetooth speakers/handsfree" and trusted place "put my home address here" and also turned on the "body detection"
In this way i am prompted to type my PIN only when needed :good:
Thanks for the help guys
Click to expand...
Click to collapse
Body detection? Crazy that. Will be checking that out, cheers
I factory wiped my phone under Marshmallow, and then updated it to Nougat with the OTA update, but when I boot up, I discovered that I am only proposed to add fingerprints to the phone. I am not offered to add a password for encryption. In the settings menu, adding a password does not appear anywhere. And it says the phone is already encrypted.
I don't understand what is going on. How can I encrypt the phone using a password?
fnoingw said:
I factory wiped my phone under Marshmallow, and then updated it to Nougat with the OTA update, but when I boot up, I discovered that I am only proposed to add fingerprints to the phone. I am not offered to add a password for encryption. In the settings menu, adding a password does not appear anywhere. And it says the phone is already encrypted.
I don't understand what is going on. How can I encrypt the phone using a password?
Click to expand...
Click to collapse
You don't see an option above fingerprint under security in settings (swipe)? Click it.
I have forgotten my pattern and ive been trying for a whole day to get it right, but it just wont work. I'm on 6.0, theres no alternate way to log with google account.
I've been trying things out, but even with my computer, no luck at all, my usb is like "use usb for charging" and i cant change that cause i need the pattern.
If someone knows a way, how to pull those photos out, knows a way how to bypass the lockscreen, I'd really really appreciate it, these photos mean the life to me and im gonna be very depressed if i lose them.
uranmorina said:
I have forgotten my pattern and ive been trying for a whole day to get it right, but it just wont work. I'm on 6.0, theres no alternate way to log with google account.
I've been trying things out, but even with my computer, no luck at all, my usb is like "use usb for charging" and i cant change that cause i need the pattern.
If someone knows a way, how to pull those photos out, knows a way how to bypass the lockscreen, I'd really really appreciate it, these photos mean the life to me and im gonna be very depressed if i lose them.
Click to expand...
Click to collapse
Assuming your phone wasn't in airplane mode (ie, it is powered on and is connected to wifi or your cellular network), you may be able to use Android Device Manager. Log into the Google account associated with your phone, select the device and click 'lock'. You'll be prompted to put in a new password, which you can then use to unlock your device.
computerslayer said:
Assuming your phone wasn't in airplane mode (ie, it is powered on and is connected to wifi or your cellular network), you may be able to use Android Device Manager. Log into the Google account associated with your phone, select the device and click 'lock'. You'll be prompted to put in a new password, which you can then use to unlock your device.
Click to expand...
Click to collapse
I did that but its asking my pattern first
Since Google has verified that a screen lock is already set, the password you entered won't be needed.
uranmorina said:
I did that but its asking my pattern first
Since Google has verified that a screen lock is already set, the password you entered won't be needed.
Click to expand...
Click to collapse
Well darn. I should have tested that before posting - I'm sorry.
There are some things I've encountered via Google search about deleting a file but it's not clear if it actually works and in all explanations requires ADB debugging to already be enabled and the bootloader to be unlocked. I'm unwilling to test the method because I don't want to mess up my own phone's setup.
Unfortunately, I think you're straight up out of options, besides a factory reset.
Does stock recovery supports adb? That might be woth a try
Do you have TWRP i got a file to help you
soff > flash twrp > boot to twrp > plugin to computer > done
i have the phone updated to android pie and rooted with magisk the latest version and i have twrp recovery on it
but while installing one of the mods (youtube vanced) and after it rebooted the phone asked for my pattern (not on the lock screen but the encrypted startup feature which i didn't turn on but i have changed my pattern a few days ago but i use the fingerprint always on the phone)
i forgot the pattern for the phone and i tried on it and it says 9 more tries and my phone will be wiped
is there a way to find the pattern on my google account since it's linked to the phone and it automatically uploads it to the cloud ? or is there a way to bypass it ?
Note:i know it sound like i stole the phone but i have proof of ownership if anyone wants(the box and the google account linked to it are mine and is linked to this account)
thanks in advance
Do you have access on twrp? If entered first time pattern should be saved and you can access data.
Simply reboot in twrp, if no pattern is asked make a backup of data partition (that will be unencrypted) just in case you will need to wipe and search for a way to access twrp-saved pattern.
You could also try the google feature "find my device" and change pattern, but as phone its encrypted i dont really think it will work.
mac12m99 said:
Do you have access on twrp? If entered first time pattern should be saved and you can access data.
Simply reboot in twrp, if no pattern is asked make a backup of data partition (that will be unencrypted) just in case you will need to wipe and search for a way to access twrp-saved pattern.
You could also try the google feature "find my device" and change pattern, but as phone its encrypted i dont really think it will work.
Click to expand...
Click to collapse
sadly the "find my phone" doesn't help
and in TWRP it asks for the key too and when i press cancel and try to go to data/system where the pass key is there is nothing (it must be encrypted as well)
and twrp says that my data is 0mb and can't even back it up because it's encrypted
Ok, but it doesnt say that data will be wiped, so you can try a lot of patterns.
Unfortunatelly theres no way to bypass because data is encrypted, you should try again and again and prepare yourself for a complete wipe.
cuper22 said:
i have the phone updated to android pie and rooted with magisk the latest version and i have twrp recovery on it
but while installing one of the mods (youtube vanced) and after it rebooted the phone asked for my pattern (not on the lock screen but the encrypted startup feature which i didn't turn on but i have changed my pattern a few days ago but i use the fingerprint always on the phone)
i forgot the pattern for the phone and i tried on it and it says 9 more tries and my phone will be wiped
is there a way to find the pattern on my google account since it's linked to the phone and it automatically uploads it to the cloud ? or is there a way to bypass it ?
Note:i know it sound like i stole the phone but i have proof of ownership if anyone wants(the box and the google account linked to it are mine and is linked to this account)
thanks in advance
Click to expand...
Click to collapse
What twrp did u use I keep reading it's bricks in pie
rob420p said:
What twrp did u use I keep reading it's bricks in pie
Click to expand...
Click to collapse
the one posted here on(although i'm sure i'm not using it correctly since every time i need to open it i need to fastboot boot twrb.img) it's been like that since 8.1
cuper22 said:
the one posted here on(although i'm sure i'm not using it correctly since every time i need to open it i need to fastboot boot twrb.img) it's been like that since 8.1
Click to expand...
Click to collapse
That's some bugs I've heard about it.on the post it recommends not useing that one for pie.u might want to look on Google I did see something about a emcrptiin patch
Hi All
Please excuse me if this has been answered before, I have a brand new Mi A2 Lite, all seems to be working fine but when I try to encrypt the phone (requirement for work) then it does into an endless reboot recycle and never completes so I have to do a forced wipe and reboot of the phone to get it back to a useable state, I am new to the whole Android experience so don't fully understand all the terminology used in these forums so please be gentle with me
I also do not see any option to update the phone even though it keeps telling me that it couldn't install system updates, so if you can help with that as well I would really appreciate it.
Thanks
Mark
MFUGATT said:
when I try to encrypt the phone (requirement for work) then it does into an endless reboot recycle and never completes so I have to do a forced wipe and reboot of the phone to get it back to a useable state
Click to expand...
Click to collapse
The phone always has encryption. You can enable a password too. Settings -> Security -> Screen Lock. What exactly did you do?
MFUGATT said:
I also do not see any option to update the phone even though it keeps telling me that it couldn't install system updates, so if you can help with that as well I would really appreciate it.
Click to expand...
Click to collapse
Settings -> Security -> Security Update
You need develooer mode in to use adb. Then see the section If the OTA fails on this guide.
https://forum.xda-developers.com/mi-a2-lite/how-to/10-0-4-0-to-10-0-7-0-ota-keeping-magisk-t3916863
a1291762 said:
The phone always has encryption. You can enable a password too. Settings -> Security -> Screen Lock. What exactly did you do?
Settings -> Security -> Security Update
You need develooer mode in to use adb. Then see the section If the OTA fails on this guide.
https://forum.xda-developers.com/mi-a2-lite/how-to/10-0-4-0-to-10-0-7-0-ota-keeping-magisk-t3916863
Click to expand...
Click to collapse
Thanks for replying
I go into Settings > Security & Privacy > Encryption & Credentials and then select Encrypt Phone, it tells me it needs to be fully charged and pulled in and then I select encrypt, it then goes into a reboot loop and needs to be hard reset, so never actually encrypts it.
I don't see Security Update in the security settings even after enabling developer mode.
Sorry for sounding stupid but I am new to all this
Thanks
Mark
MFUGATT said:
I go into Settings > Security & Privacy > Encryption & Credentials
Click to expand...
Click to collapse
Are you on Oreo or Pie? What version number do you see in Settings -> About?
Eg. My phone says android version 9 (that's pie) and build number PKQ1.180917.001.10.0.14.0.PDLMXIM (that's the September update).
I found that encryption screen burried under advanced.
My phone is already encrypted. No option to disable. That's what this phone does. Custom ROMs need a special encryption disabler.
MFUGATT said:
and then select Encrypt Phone, it tells me it needs to be fully charged and pulled in and then I select encrypt, it then goes into a reboot loop and needs to be hard reset, so never actually encrypts it.
Click to expand...
Click to collapse
That's definitely not standard for Pie. I'm fairly certain it's not how Oreo worked either...
MFUGATT said:
I don't see Security Update in the security settings even after enabling developer mode.
Click to expand...
Click to collapse
Hmm...
If you're on Oreo the update screen will be in a different place. I normally go Settings -> System -> Advanced -> System Update.
There have been people who bought A2 Lite but got a hacked Redmi Pro 6 instead... Don't panic yet, but if things are seeming odd... Look at this thread for some signs your phone was tampered with.
https://forum.xda-developers.com/mi-a2-lite/help/mi-a2-lite-lineageos-box-t3934710
MFUGATT said:
Thanks for replying
I go into Settings > Security & Privacy > Encryption & Credentials and then select Encrypt Phone, it tells me it needs to be fully charged and pulled in and then I select encrypt, it then goes into a reboot loop and needs to be hard reset, so never actually encrypts it.
I don't see Security Update in the security settings even after enabling developer mode.
Sorry for sounding stupid but I am new to all this
Thanks
Mark
Click to expand...
Click to collapse
Mi A2 Lite already comes encrypted by default. I know this because I use an work profile too.
I can be wrong, bit are you sure you got a genuine Mi A2 Lite, with the official ROM? Go to Settings -> About Device. Post a screenshot, please.
I've had a similar issue with 2 devices (32 and 64 gb variants), both phones unencrypted themselves without me doing something weird, the normal behavior with an encrypted phone is that when you reboot or turn on the device it asks for a pin to fully boot, but my phones after some usage skipped that step and boot without the pin, after that I cant re enable encryption unless I wipe the phones, both aren't redmi 6 pro because i checked and they receive every monthly update without any problem, i'm guessing it is a memory issue ( read somewhere mi a1 and a2 had eMMC problems)
a1291762 said:
Are you on Oreo or Pie? What version number do you see in Settings -> About?
Eg. My phone says android version 9 (that's pie) and build number PKQ1.180917.001.10.0.14.0.PDLMXIM (that's the September update).
I found that encryption screen burried under advanced.
My phone is already encrypted. No option to disable. That's what this phone does. Custom ROMs need a special encryption disabler.
That's definitely not standard for Pie. I'm fairly certain it's not how Oreo worked either...
Hmm...
If you're on Oreo the update screen will be in a different place. I normally go Settings -> System -> Advanced -> System Update.
There have been people who bought A2 Lite but got a hacked Redmi Pro 6 instead... Don't panic yet, but if things are seeming odd... Look at this thread for some signs your phone was tampered with.
https://forum.xda-developers.com/mi-a2-lite/help/mi-a2-lite-lineageos-box-t3934710
Click to expand...
Click to collapse
Thanks, so it would appear I have been sold a fake phone, following the instructions I appear to have a Redmi Pro 6, so the next question is how can I get this phone to a state where I can encrypt it.
Many thanks
Mark
MFUGATT said:
Thanks, so it would appear I have been sold a fake phone, following the instructions I appear to have a Redmi Pro 6, so the next question is how can I get this phone to a state where I can encrypt it.
Many thanks
Mark
Click to expand...
Click to collapse
First double check which your model is through fastboot using:
Code:
fastboot getvar
if you receive a code sakura then your model is Redmi 6Pro and the better would be returning it completely to stock or you´ll have more troubles in the way.