There seems to (at least theoretically) whitelist pairing-requests by mac-adress. Randomly hitting those few approved adresses consistently seems fairly unlikely: kb.vmware.com/s/article/50121103 (how to do it on Samsung, wish I had this option as well)