跳转到主内容

This Chromebook is one of the many popular laptops given to students by schools. It charges via USB C and has 2 USB ports.

3 个问题 查看全部

How to delete all wipe clean all administration lock from drive

Delete all administration hardware from Dell Chromebook 3100 2/1

回答此问题 我也有这个问题

这是一个好问题吗?

得分 4
2条评论

idk i just want this off

完成的

me too it does get really boring tbh fr

完成的

添加一条评论

4个答案

最有帮助的答案

If your cromebook is a part of a school district this is a bad idea, you could get in a lot of trouble, plus those rules are there for a reason.

这个答案有帮助吗?

得分 4

3条评论:

no, so you don't play games and stuff

完成的

"That reason is to make sure these devices can never be reused."

@guardian10 No, it isn't. It's there to secure the asset as a school owned device if it's lost or stolen (the filtering is a bonus, and basically required by law, see CIPA :/), but they often forget to remove it. It's like BIOS passwords on Dell surplus; I know how to deal with it, but it's fixable. Not on HP or Lenovo. I don't discuss how to break BIOS passwords, so don't ask.

Same issue w/ Computrace -- lazy admins forget. But Absolute will remove it if it's very clearly an old hobbyist purchase, like my Quadro 160M E6400. If I know ahead of time, I know I need to call Absolute, then setup the laptop, then let it sit.

I got my kicks in against school IT in middle and high school and got my chops early; then went straight for certs and work. The stunts I got away with make me beyond qualified to debunk this.

完成的

This was a very good post, I was about to delete my administrator but then I read this.

Thank you!

完成的

添加一条评论

Author's note: I was the kid in high school who openly made deals with the right people to work around the web filter. I know how to deal with local management like MS AD and Apple Remote Desktop and have seen how remote management has evolved. I'm not new to this realm. Once I've written off something as unbreakable, it's not practical.

The MDM is tied to Google using the device S/N and is enforced with a local firmware lock. Unless you reflash the firmware from scratch (which is nearly impossible without a dump, as Google does not publicly release the reference BIOS files used by all of the Chromebook OEMs), find out how to reflash it (each OEM does this differently and this is also confidential beyond Google's public-facing info) and change the serial number (EEPROM programmer required with Chromebooks newer then the "CR-48" generation; Google fixed the CLI exploit and added an option to block the developer mode on the newer models even with the WP screw removed) there's no way to remove it without a new motherboard. It's effectively the same as MDM like Apple Business Manager and Jamf, which are tied to a provisioning ID unique to the machine and S/N it is associated with.

Suppose there was a way to do this without losing the Chromebook BIOS and make it like new without custom hacking like flashing a standard PC BIOS (and losing Chrome OS). Do you not think I'd break into a few of the reasonably new ones to mock people who think these are secure as a "trophy" and laugh at how much of it is security theater, given my history of making deals in high school and forcing sysadmins on power trips to take an L? And I laughed at the security of Chromebooks with one of the teachers I know who would expect me to do it? I did this in high school for sport to play Halo CE at school LAN party style on WinXP to work around the district WAN port blocking while making the web filter look like the joke it is. The only way this gets removed is by the ORIGINAL OWNER unless you change the motherboard. School surplus is usually more trouble than it is worth; they're either EOL or abused in many ways. Looking at it wrong could break it unexpectedly, and you now need to rebuild a dirt-cheap surplus laptop at the same price as a replacement unit.

If anyone is qualified to debunk this, it's someone who knows what they're doing, has done a few of the dirty jobs, and has hands-on time getting it done. Simply put, Anything anyone pushes as a "fix" to remove the Chromebook MDM is either referring to a "CR-48," which is CLI exploit-friendly (as long as developer mode and terminal aren't pre-blocked), AND ALL MODELS USING IT ARE EOL NOW, or selling you a lie. The solution is a new motherboard, the end.

这个答案有帮助吗?

得分 2
添加一条评论

Did you buy the computer?

Update (11/20/23)

If not and you still are in school and the computer is still on the property of the district, you could get into a lot of trouble for this type of action.

这个答案有帮助吗?

得分 0
添加一条评论

reset the cromebook

这个答案有帮助吗?

得分 0

2条评论:

what if they dont know that doing this could get you into a lot of trouble for reseting the computer?

完成的

this really does not do anything I have tried it a million times to be honest it seems like it is impossible to get rid of the administrative lock but it actually is possible but I just have not found out how to do so yet

完成的

添加一条评论

添加你的答案

Paul bell 将永远感激不已
浏览统计数据:

过去 24 小时: 2

过去 7 天: 11

过去 30 天: 48

总计 1,689