Windows Hello for Business (status: 0xc00000bb, substatus0x0) error

Question

Windows Hello for Business (status: 0xc00000bb, substatus0x0) error

Seth Holek 56

Have had WHFB working for some time, but recently users getting 'Something went wrong and your PIN isn't available (status: 0xc00000bb, substatus: 0x0). Click to set your PIN again.'

If I check Event Viewer under WHFB, error states 'Device unlock policy is not configured on this device'.

I've checked to see if any changes were made to Azure polices or any update-related issues to severs or PC's, but cannot seem to find the issue.

Thanks!!

4 answers

Your answer

Answer 1

Trevor Davis 6

Hi Everyone, our PKI infrastructure is configured in a two-tier model with an offline standalone root, and subordinate enterprise ca. In our case, we began noticing this issue after our root CRL next update date passed, and we had not updated our CRL. Because our root is offline, there is a manual process to publish it, and the CRLdp is a different location than default. After publishing the updated CRL, it did not work immediately.

Hope this helps someone.

Alex Marsaudon 1 Reputation point

2021-11-12T19:00:54.997+00:00

Hey TrevorDavis-4287,
My situation mirrors yours exactly (two-tier pki, offline root, online subordinate). CRL expired, I went through the process of manually publishing a fresh one. ~3 hours later, I am still experiencing issues with WHfB. How long was yours out of commission before it resumed functionality? Were any manual steps required to restore functionality beyond publishing the new CRL?
Thanks in advance,
-Alex
Alex Marsaudon 1 Reputation point

2021-11-12T20:24:24.89+00:00

Mine resumed full functionality ~4 hours after publishing the CRL. I also bumped all my DCs (one at a time). Not sure if it was the length of time or the DC bump that did the trick.

Answer 2

Alfredo Revilla - Upwork Top Talent | IAM SWE SWA 27,536 Moderator

Please create a support request to better address this issue.

--
Let us know if this answer was helpful to you. If so, please remember to mark it as the answer so that others in the community with similar questions can more easily find a solution.

JamesTran-MSFT 37,226 Reputation points Microsoft Employee Moderator

2020-08-25T22:52:50.247+00:00

@Seth Holek
I just wanted to check in and see if you required additional assistance or if you were able to resolve this issue?

----------

If any reply/answer helped resolve your question, please remember to "mark as answer" so that others in the community facing similar issues can easily find the solution.
Sherif Wagih 1 Reputation point

2021-03-07T11:41:08.697+00:00

Hi, was anybody able to find out a solution for this problem?
Thanks

Answer 3

55637336 1

Hello,

I have the same issue here. On-premises certificate trust. The user can successfully enrol but the sign-in fails with

followed by

Answer 4

Devon Maya 1

Same issue here. Any resolution?

Martin ]-[ 1 Reputation point

2021-04-28T01:00:13.463+00:00

please check if the domain certificates are not expired.
regards

Share via

Windows Hello for Business (status: 0xc00000bb, substatus0x0) error

4 answers

Your answer