Azure AD account login option disappears from system after Windows update

Tushar Aggarwal 11 Reputation points
2020-11-09T21:58:15.177+00:00

Some of our clients are joined to Azure AD on their laptops running Windows 10 using Single Sign-On.

(Settings > User Accounts > Work or School Account > Connect > Join to Azure AD directory instead > Office 365 email address)

Azure AD sign-in on their laptops was running fine unless they ran windows update on their system and restarted their system. The Azure AD account disappeared completely from their sign-in option on the laptop. We had to use the local account (backup account) to sign in to their laptop, restore Windows to a previous build in order to fix the issue.

Thoughts?

Windows 10 Setup
Windows 10 Setup
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Setup: The procedures involved in preparing a software program or application to operate within a computer or mobile device.
1,889 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,100 questions
{count} votes

8 answers

Sort by: Most helpful
  1. Bamikop 1 Reputation point
    2020-11-10T08:13:59.613+00:00

    Same problem here with over 100 clients!

    0 comments No comments

  2. Gary Fuller 1 Reputation point
    2020-11-12T11:06:06.8+00:00

    We have the same issue with some of our clients. Currently trying to find what update is causing this. If there is a local account on the device just sign in with this and then re-join back to AzureAD.. this saves time instead of restoring back to a previous build, giving that the other local account has admin privileges.

    If I find the update causing this I will post back.

    Cheers

    0 comments No comments

  3. Gavin Pitt 1 Reputation point
    2020-11-14T15:40:33.457+00:00

    I am seeing exactly the same problem with Windows 10 machines connected to Azure AD with Office 365 Standard as well as devices connected to Intune. Massive problem for us. The Intune devices cannot join again as we get Error 8018000a "This device is already enrolled" Has anyone made any further progress?

    0 comments No comments

  4. Jordan 1 Reputation point
    2020-11-15T01:10:59.34+00:00

    Found more info on this thought I'd update with my findings. This is an issue due to Feature Updates and Cumulative Updates causing Certificates to wiped during the Feature Updates. Only fix so far is rollback Feature Update or remove from Azure AD -- rejoin to domain from what I've found;

    see more here;
    https://borncity.com/win/2020/11/01/microsoft-besttigt-zertifikatsverlust-bei-windows-10-upgrades/
    and here;
    https://old.reddit.com/r/Intune/comments/jkbifu/feature_update_disconnecting_from_azure_adintune/?sort=new


  5. Marilee Turscak-MSFT 33,211 Reputation points Microsoft Employee
    2020-11-17T17:23:58.657+00:00

    This is a known issue documented here. A fix is on its way.

    0 comments No comments