Yes, the user will be able to log in to Windows 14 days later on the hotel (without internet connection) if the device is Azure AD joined and the user is synced to Azure AD and ADFS. The user's credentials will be cached on the device for up to 14 days, so they will be able to log in without an internet connection.
Here is how it works:
- When the user signs in to the device, their credentials are cached on the device.
- The device then connects to Azure AD and authenticates the user's credentials.
- Azure AD then sends a token back to the device, which the device uses to authenticate the user for the next 14 days.
If the user's device is not connected to the internet for more than 14 days, the user will not be able to log in without re-entering their credentials.
Here are some additional things to keep in mind:
- The 14-day credential caching period is the default value. You can change this value in Azure AD by going to Settings > Devices > Conditional Access > Session control > Maximum session age.
- If the user's device is lost or stolen, you can revoke the user's access to Azure AD by going to Users > Active users > select the user > Manage > Revoke access.
- You can also configure Azure AD to require users to re-enter their credentials every time they sign in. This can be done by going to Settings > Devices > Conditional Access > Session control > Sign-in frequency.