Share via

Windows Hello Unavailable for Domain Managed Account but working for local account

Ngoc-Tu Thach 0 Reputation points
2024-12-13T10:21:33.8066667+00:00

Hello,

we got a Surface in the domain and the customer want to use the Windows Hello function for authentication. Locally no problem, but within the domain, the Hello doesn't work. It's outgrayed so I can't do anything with it.

In the GPO is nothing changed, so the default configuration für windows hello should work (what I read, that default is to allow windows hello)

Any Suggestions or help?

I would be appreciated

Sincerely,

Tu

Windows for business | Windows Client for IT Pros | User experience | Other
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2024-12-27T16:02:24.29+00:00

    Hello,

    I recommend you go to the following path in the Registry Editor:

    "Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System"

    Add a new registry (if it does not exist):

    Type: DWORD (32-bit)

    Name: AllowDomainPINLogon

    Value: 1

    Then restart your computer.

    https://learn.microsoft.com/en-us/archive/msdn-technet-forums/74e3c3e8-1f47-4940-960c-c54cc98e82dd

    Note If you modify the registry incorrectly, you can cause serious problems. Therefore, follow these steps carefully. For additional protection, back up the registry before you modify it. For more information about how to back up and restore the registry, see How to back up and restore the registry in Windows.

    Best Regards,

    Zunhui

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.