SOTI Pulse Logo

BIND_NOTIFICATION_LISTENER_SERVICE not granted via permission

J
Jeroen
PostNL Holding BV

Hi,

We're using Datalogic Memor 35 devices and are trying to grant BIND_NOTIFICATION_LISTENER_SERVICE permission to a specific app. The Datalogic plugin is installed with the latest version. We've tried all kinds of variations of this script:

request_appops_permission android.permission.BIND_NOTIFICATION_LISTENER_SERVICE allow <packageName>

With and without android.permission prefix, as a standalone script to device or as post-install script on that package, with lockdown and without lockdown configured, with and without insideagent prefix. The SOTI MobiControl agent does have that specific permission but for some reason our app cannot receive that permission delegated by the SOTI agent. 

We do see that the OS recognizes the app as option for this permission; as we can grant it manually via settings outside lockdown mode.

Version: 2025.0.2.1059

Any help is appreciated.

Kind regards,

Jeroen

6 months ago
Android Scripting
ANSWERS
MD
Matt Dermody Diamond Contributor
6 months ago

I think the script that you're trying to use is more for having the SOTI agent prompt the end user to manually accept these "dangerous" run time permissions to grant those for the agent itself. I do not think this will work to trigger the agent to grant the dangerous permission to a different 3rd party app. I believe for that to be possible Datalogic would need to provide you with a mechanism for silently granting those permissions as it's not something natively available in Android enterprise and therefore not natively available in SOTI. Honeywell and Zebra both offer custom / proprietary methods for silently granting dangerous runtime permissions to apps running on their devices. DataLogic would need to provide you with a similar mechanism.

J
Jeroen
6 months ago

Hi Matt,

Thanks for your quick response. This does work with the SYSTEM_ALERT_WINDOW permission on the Datalogic. Are there any differences between these appops permissions that one cannot be granted silently while the other can?

M
MMMOD
5 months ago

Hi Jeroen, 

Yes, there’s a difference. While SYSTEM_ALERT_WINDOW can be silently granted on Datalogic devices, BIND_NOTIFICATION_LISTENER_SERVICE is more restricted because it gives apps access to all notifications. Android requires users to manually enable it in settings for privacy reasons, and unless Datalogic provides a special method to allow it silently (like Zebra or Honeywell do), it can't be granted automatically through SOTI.

Similar Discussions