• Windows Hello Unavailable

    Home » Forums » AskWoody support » Windows » Windows 11 » Windows 11 version 23H2 » Windows Hello Unavailable

    Tags:

    Author
    Topic
    RRtechgroup
    AskWoody Plus
    November 7, 2023 at 3:21 pm #2601023

    Windows Hello is disabled for users and says ‘This option is currently unavailable’ for Facial recognition, Fingerprint and PIN. There is a message above stating that ‘Some of these settings are managed by your organization’

    Machines are connected to Intune and Windows Hello for Business is enabled there at the tenant level.  We are a Hybrid AD so machines do get GPOs but there is no WHfB GPO enabled.

    We’ve done all the research on prerequisites and still don’t seem to have any luck enabling it. We’ve also tried Intune Configuration Policies to specifically push to users rather than depending on the tenant-level. Nothing works. Some users have had luck if we modify the registry key but not all, and that’s not an option to do for everyone.

    Where else can I check to see what’s keeping it disabled?

    Reply | Quote
    Viewing 2 reply threads
    Author
    Replies
    • PKCano
      Manager
      November 7, 2023 at 5:19 pm #2601050

      In Windows Update, clicking on ‘Some of these settings are managed by your organization’ gives some clue to which Group Policy settings are responsible. Does that work under Windows Hello?

      Reply | Quote
    • doriel
      AskWoody Lounger
      November 8, 2023 at 6:02 am #2601116

      From my angle of perpective, Windows Hello and PIN are sytematically disabled in large organisations(enterprises), just because they do not meet security regulations. Usually its not possible to enforce policy like 3-months validity, complexity or history. This said – I have it seen disabled in all three global organisations I work for as a contractor.

      Dell Latitude 3420, Intel Core i7 @ 2.8 GHz, 16GB RAM, W10 22H2 Enterprise

      HAL3000, AMD Athlon 200GE @ 3,4 GHz, 8GB RAM, Fedora 29

      PRUSA i3 MK3S+

      Reply | Quote
      • b
        AskWoody_MVP
        November 8, 2023 at 7:00 am #2601121

        Windows Hello PIN expiry, complexity and history can be configured by group policy:

        Group Policy settings for Windows Hello for Business — PIN complexity

        Which regulations don’t they meet?

        1 user thanked author for this post.
        doriel
        Reply | Quote
        • doriel
          AskWoody Lounger
          November 8, 2023 at 7:05 am #2601123

          Very nice link, b.

          Maybe some of these settings are disabled for @RRtechgroup

          Windows Hello as a convenience PIN is disabled by default on all domain joined and Microsoft Entra joined devices.

          Dell Latitude 3420, Intel Core i7 @ 2.8 GHz, 16GB RAM, W10 22H2 Enterprise

          HAL3000, AMD Athlon 200GE @ 3,4 GHz, 8GB RAM, Fedora 29

          PRUSA i3 MK3S+

          Reply | Quote
    • doriel
      AskWoody Lounger
      November 13, 2023 at 8:10 am #2602159

      I suggest to run

      whoami /groups

      you can check the security goup membership for affected users. I mean – look for groups that are different for users who is able to set it and is not able to set it.

      I dont know how it works with Azure/Intune, but on the good old AD, I would open group policy editor and look what is blocking it.

      Dell Latitude 3420, Intel Core i7 @ 2.8 GHz, 16GB RAM, W10 22H2 Enterprise

      HAL3000, AMD Athlon 200GE @ 3,4 GHz, 8GB RAM, Fedora 29

      PRUSA i3 MK3S+

      Reply | Quote
    Viewing 2 reply threads
    Reply To: Windows Hello Unavailable

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    May 2025
    S M T W T F S
     123
    45678910
    11121314151617
    18192021222324
    25262728293031

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.