How to find out which GPO is affecting my biometrics settings on Windows 10?

T Crha 391 Reputation points
2023-07-03T10:11:17.4133333+00:00

Hello everyone,

I need your help again . this time I am trying to find out, which of the GPOs applied on my company, domain joined PC with Windows 10. When I go to Settings - Accounts - Sign in Options - Windows Hello, I can see a message that this feature is managed by my organization. But when I am going through all the GPOs on domain controller, I am not able to localize a single one that is affecting this

Computer Configuration\Administrative Templates\Windows Components\Biometrics

When I run gpedit.msc on my workstation, I am able to open it only in context of local admin, which will not show me anything (all the features under both Computer and User settings are "Not configured").

So my question is, is there a way to somehow find out which GPO is affecting which setting (for those visible via gpedit.msc)?

Thank you very much,

Tomas

Windows 10
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
11,963 questions
Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
5,705 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Limitless Technology 44,551 Reputation points
    2023-07-04T14:07:50.7333333+00:00

    Hello

    To determine which Group Policy Object (GPO) is affecting your biometrics settings on Windows 10, you can follow these steps:

    Open the Local Group Policy Editor: Press the Windows key + R on your keyboard to open the Run dialog box. Type "gpedit.msc" and hit Enter. This will open the Local Group Policy Editor.

    Navigate to the Biometrics settings: In the Local Group Policy Editor, navigate to the following path:

    Computer Configuration\Administrative Templates\Windows Components\Biometrics

    Check the configured policies: In the "Biometrics" folder, you will find various policies related to biometric settings. Look for policies that are enabled or have specific configurations related to biometric options such as fingerprints, ****** recognition, or other biometric authentication methods.

    Note down the GPO names: Take note of the names of the enabled or configured policies under the "Biometrics" folder. These policies are likely the ones affecting your biometrics settings.

    Use Group Policy Results Wizard: To verify which GPO is applying the settings to your Windows 10 device, you can use the Group Policy Results Wizard. Here's how:

    Press the Windows key + R to open the Run dialog box.

    Type "gpedit.msc" and hit Enter to open the Local Group Policy Editor.

    In the Local Group Policy Editor, go to the "Computer Configuration" or "User Configuration" section based on the scope of the GPO you suspect.

    Right-click on "Computer Configuration" or "User Configuration" and select "Group Policy Results."

    Follow the wizard's steps to generate a Group Policy Results report.

    In the generated report, navigate to the "Applied Group Policy Objects" section, which will list the GPOs that are applied to your device or user account.

    Look for the GPOs you noted down in step 4 and check if they are applied.

    By following these steps, you should be able to identify the GPOs that are affecting your biometrics settings on Windows 10 and verify their application using the Group Policy Results Wizard.

    I used AI provided by ChatGPT to formulate part of this response. I have verified that the information is accurate before sharing it with you.

    --If the reply is helpful, please Upvote and Accept as answer--


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.