Windows Hello for Business (status: 0xc00000bb, substatus0x0) error

Seth Holek 51 Reputation points

Have had WHFB working for some time, but recently users getting 'Something went wrong and your PIN isn't available (status: 0xc00000bb, substatus: 0x0). Click to set your PIN again.'

If I check Event Viewer under WHFB, error states 'Device unlock policy is not configured on this device'.

I've checked to see if any changes were made to Azure polices or any update-related issues to severs or PC's, but cannot seem to find the issue.


Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,185 questions
0 comments No comments
{count} votes

4 answers

Sort by: Most helpful
  1. 2020-08-19T19:02:29.233+00:00

    Please create a support request to better address this issue.

    Let us know if this answer was helpful to you. If so, please remember to mark it as the answer so that others in the community with similar questions can more easily find a solution.

  2. 55637336 1 Reputation point


    I have the same issue here. On-premises certificate trust. The user can successfully enrol but the sign-in fails with

    followed by


    0 comments No comments

  3. Devon Maya 1 Reputation point

    Same issue here. Any resolution?

  4. Trevor Davis 1 Reputation point

    Hi Everyone, our PKI infrastructure is configured in a two-tier model with an offline standalone root, and subordinate enterprise ca. In our case, we began noticing this issue after our root CRL next update date passed, and we had not updated our CRL. Because our root is offline, there is a manual process to publish it, and the CRLdp is a different location than default. After publishing the updated CRL, it did not work immediately.

    Hope this helps someone.