This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 4%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
Hi,
We need to setup some android devices as shared device for front line workers but when I setup the device it works fine but after 20-30 minutes it force me to have an Pin but i'm not sure where this setting is coming from
We have following requirements
I have followed these steps
How can I do this and where is the pin setting coming from
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@lalajee, Thanks for the reply.
After checking the policy settings applied to shared device, I didn't find one related to the PIn or password set. That's strange. If we unenroll the device, delete the records in both Intune and Azure AD, then enroll again, will we PIN requirement disappear?
If I delete the device from intune it wipes the device.
i have deleted the device from intune and azure ad, but still get same issue
Pin Requirement doesn't kicks in until i install microsoft home page app, if I remove MS home app I dont get message to set pin
@lalajee, Thanks for the reply. For the Microsoft home page app, did you mean the managed home screen app? Please help to double confirm.
Yes, managed home screen app
@lalajee, Thanks for the confirmation. I have configured the same configuration but I didn't get "Encrypt your device" and "set a screen lock" under the device policy.
Here, would you mind to go to the affected device, select Device compliance and Device configuration to see if there's still any other policy there. Meanwhile, please check if any policy under Endpoint security assigned to this affected device.
You can see Pin and stand policy is not applied to this phone
@lalajee, Thanks for the response. For the last profile, it seems I didn't see it before. Could you get the detailed setting of this policy to double check?
Thank you for all your help
its working now, it was my compliance policy which was causing the issue
Thank for your help
Its working now, it was the compliance policy which was causing issue
@lalajee, Thanks for the update. I am glad that it is working now. Congratulations! If there's anything else we can help in the future, feel free to post in our Q&A to discuss together.
Thanks for your time and have a nice day!
It is system security policy in your compliance policy that is forcing the 6 digit pin. You will need to look into that.
I have remove that but still its asking for set pin or device will be reset in 9 days
On Device under Device Config
I see error for "Required unlock frequency" but I haven't configure this setting.
Also I create an filter and apply to all Device setting on each profile
Filter
Apply on each config profile as
Is the device checking in? The compliance shows multiple sources for policies. Sure the filter is populating the intended devices?
Device is checking in.
I have split the config policy into 3 policy
If I remove MS Home Page App, the pin number doesn't show anymore
I think its my app policy which is forcing me to setup pin
@lalajee, Thanks for posting in Q&A.
Based on my testing, when I only assign the app configuration policy to the dedicated with kiosk mode device, the device is asked session PIN when I sign in AAD user account. Wait for almost 10 minutes, not getting any prompting to enter device PIN. Then i sign out the AAD user account and wait 10 minutes, still not getting any prompt to setting device PIN.
From your description, I find currently Update and shared device policy are applied to these shared devices. Could you get screen shots of these policy properties to know their configuration better?
Please see all of the policy
This policy is applied to all machine expect for Shared Device (using filters)
Policy 2
This policy is applied to all machine expect for Shared Device (using filters)
policy 3/4 This policy is applied to all machine
This is the policy which gets applied to shared device
This is what I see on phone