TransWikia.com

Enable Windows Hello within domain machines

Server Fault Asked on November 7, 2021

My goal is to allow users to use Windows Hello on their computers which are connected to the domain. It doesn’t have to be Hello for business. At the moment users even can’t see Windows Hellow section in sign in settings, for example:
enter image description here

We are using Hybird AD, I’ve tried many combinations of settings in group policy. Right now I’ve got enabled options:

  • Tun on convenience PIN sign-in (in Logon settings)
  • Use Windows Hello for Business (in Hello for Business settings)
  • Use biometrics (in Hello for Business settings)
  • Use a hardware security device (in Hello for Business settings)
  • Allow the use of biometrics (in Biometrics settings)
  • Allow users to log on using biometrics (in Biometrics settings)
  • Allow domain users to log on using biometrics (in Biometrics settings)

After disconnecting machine from domain, Windows Hellow appears and works alright. Machine is runing on Windows 10 Enterprise, version 2004.

What else I can try to do to allow users to use Windows Hello (PIN, fingerprint, facial recognition)?

One Answer

After setting all Windows Hello for Business settings in group policy as not configured and syncing AD, everything started to work, Windows Hello is visible, possible to configure and works like a charm.

Answered by Paweł Zimny on November 7, 2021

Add your own answers!

Ask a Question

Get help from others!

© 2024 TransWikia.com. All rights reserved. Sites we Love: PCI Database, UKBizDB, Menu Kuliner, Sharing RPP