https://devzone.nordicsemi.com/f/nordic-q-a/15349/why-is-gatt-attribute-security-required-to-be-enabled-for-passkey-to-workThis is a follow-up question from devzone.nordicsemi.com/.../ I finally got passkey support to work on ble_app_uart but don&#39;t quite understand the changes made to the code to get things working. I had to make some changes in ble_nus.c. BLE_GAP_CONN_SEC_MODE_SET_OPENen-USTelligent Community 13Tue, 26 Jul 2016 08:03:19 GMThttps://devzone.nordicsemi.com/thread/58659?ContentTypeID=1Tue, 26 Jul 2016 08:03:19 GMT137ad170-7792-4731-bb38-c0d22fbe4515:18fbe412-3ae6-4ab3-a6a8-630f026d3bafRK<p>don&#39;t know why you&#39;re finding this so hard. You don&#39;t &#39;run&#39; peer manager, peer manager is a piece of code which responds to the encryption request/response callbacks from the central and sends the responses required to encrypt the lik. So you need to build it into the app and feed it ble events so it can generate the correct responses when the central starts the encryption process. What however STARTS that process is your app responding to a characteristic read with an error that the characteristic can&#39;t be read without encryption, it does that because the permissions on the attribute are set not to be open but to require encryption. So you need both, attribute permissions to get the central to start encryption, peer manager (or your own version which does the same thing) to handle the callbacks which result from starting it.</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/58658?ContentTypeID=1Tue, 26 Jul 2016 07:17:34 GMT137ad170-7792-4731-bb38-c0d22fbe4515:c8f2223e-67df-43f2-887e-7397bc289963helpme<p>Do you mean I need not run peer manager in ble_app_uart and the passkey feature will still work if I use BLE_GAP_CONN_SEC_MODE_SET_ENC_NO_MITM?</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/58657?ContentTypeID=1Tue, 26 Jul 2016 07:12:34 GMT137ad170-7792-4731-bb38-c0d22fbe4515:2e1fb281-550c-4b45-b714-4411ec0868a3RK<p>yes peer manager has nothing to do with it. The central reads the attribute, if it gets back an error INSUFFICIENT_AUTHENTICATION (or is that authorisation, I never remember) then it starts the encryption process, else it doesn&#39;t bother.</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/58656?ContentTypeID=1Tue, 26 Jul 2016 07:10:31 GMT137ad170-7792-4731-bb38-c0d22fbe4515:ea704169-ac7f-4920-9d0a-43da62e663behelpme<p>I see. That is why the Android app does not prompt for a passkey when security is set to open even if peer manager is running.</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/58655?ContentTypeID=1Tue, 26 Jul 2016 07:08:28 GMT137ad170-7792-4731-bb38-c0d22fbe4515:f8624f18-1f0d-481b-a1af-e1785a1a6ddcRK<p>Why? Because if the permissions are open there&#39;s no encryption required so no need to encrypt the link at all so no need for a passkey because you&#39;re not encrypting.</p><div style="clear:both;"></div>