Summary
Windows Hello enables organizations to implement two-factor authentication, while providing an easier authentication experience for users on devices that support biometric sign-in. Windows Hello can be implemented in cloud, on-premises and hybrid environments. Microsoft Entra ID Protection actively monitors authentications, evaluates the circumstances, and calculates potential risk, such as consecutive logins from different locations. Microsoft Entra ID also provides the ability for users to reset their own password, while giving Administrators the ability to configure the criteria required to complete the task. With Microsoft Entra multifactor authentication, organizations can configure users provide two or more credentials (such as a PIN and a mobile phone) to sign in to devices and access resources.