This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(182.40000000000003, 43%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECS%3C/text%3E%3C/svg%3E)
I am able to block the user or reset there password to kick them out of 365, however in all test cases we are still able to log in to the local device with a pin. I'm scratching my head on this one, any ideas? Wipeing the device seems like our best option at at this time.
Wipe will reset OS to factory setup, OOBE. Delete device account would prevent user to login to device and let Windows stay to login screen. I suggest to use Delete option, in that case user needs to figure out by his own how to boot to install media re-install Windows by his own to keep continue to use the computer.
Test out the Delete scenario carefully in your infrastructure, but it should behave as I discribed.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@Chris Sieferty, Thanks for posting in Q&A. To block one user to access all devices, you can consider disable the user account.
If you want to block the user to access one or some device, you can try the policy in the following link:
Note: None-Microsoft link, just for the reference.
Thanks for your understanding.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
@Chris Sieferty, Hope things are going well. I am writing to see if we have the opportunity to try the above suggestions. If there's any update, feel free to let us know.