Share via

PIN complexity bugged in Windows 11 domain

Dean03023 26 Reputation points
2022-12-15T14:05:24.787+00:00

Hello, I just installed Windows 11 and joined the domain. I opened group policy where you can enable PIN sign in and set the complexity. I enabled it and set PIN complexity to 4. Enabling worked, however PIN complexity seems glitched and even though I set the minimum length to 4, it still asks me to have my PIN at least 6 character length.

Do you know how to fix this?

Windows for business | Windows Client for IT Pros | User experience | Other
0 comments
Accepted answer
  1. AubsUK 81 Reputation points
    2022-12-29T16:57:22.737+00:00

    I had exactly the same issue, but I resolved it by setting the below policies in the relevant GPO. Would be worth making sure you have the ADMX files that correspond to your version of Windows 11.

    Computer Configuration >> Policies >> Administrative Templates >> System >> Logon
    Turn on convenience PIN sign-in >> Enabled

    Computer Configuration >> Policies >> Administrative Templates >> System >> PIN Complexity
    Minimum PIN length >> Enabled >> Minimum PIN length >> 4

    Computer Configuration >> Policies >> Administrative Templates >> Windows Components >> Windows Hello for Business
    Use Windows Hello for Business >> Enabled

    274884-image.png

    In an elevated command prompt, run gpupdate /force

    You do not need to log off and back on or reboot.

    It's not intuitive at all. You can check it is working correctly, by going to Settings >> Accounts >> Sign-in options >> PIN (Windows Hello) >> Click the button (can't remember what it is called)
    Enter your password >> OK
    Click the 'Include letters and symbols >> PIN requirements
    It should now show 4

    274931-image.png

    1 person found this answer helpful.

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Kapil Arya 8,456 Reputation points MVP Volunteer Moderator
    2022-12-16T16:51:18.867+00:00

    Please pay attention to NOTE at the bottom of policy explanation:

    Minimum PIN length configures the minimum number of characters required for the PIN. The lowest number you can configure for this policy setting is 4. The largest number you can configure must be less than the number configured in the Maximum PIN length policy setting or the number 127, whichever is the lowest.

    If you configure this policy setting, the PIN length must be greater than or equal to this number.

    If you disable or do not configure this policy setting, the PIN length must be greater than or equal to 6.

    NOTE: If the above specified conditions for the minimum PIN length are not met, default values will be used for both the maximum and minimum PIN lengths.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.