Discover the future of secure access with our latest video on Windows Hello for Business! Join us as we explore how this innovative technology unlocks your device with just a glance or a touch. Say goodbye to passwords and hello to a seamless, secure experience. Perfect for businesses looking to enhance their security measures! #WindowsHello #CyberSecurity #microsoft365
🆓 FREE Facebook Group
From security to productivity apps to getting the best value from your Microsoft 365 investment, join our Microsoft 365 Mastery Group
🆓 FREE Microsoft 365 Guide
Our FREE Guide – Discover 5 things in Microsoft 365 that will save your business time and money….. and one feature that increases your Cyber Security by 99.9%
► Download our guide here today:
💻 Want to Work Together?
Drop me an email: jonathan@bearded365guy.com
😁 Follow on Socials
TikTok @bearded365guy
Instagram @bearded365guy
📽️ Video Chapters
00:00 Introduction
01:32 Passwordless Future
02:48 Windows Hello Default Configuration
04:06 Configure Basic Windows Hello Settings
07:53 Using Intune for Windows Hello
11:38 User Experience
13:36 Multi-Factor Unlock
16:41 Device Auto-Lock
19:01 Q&A
[ad_2]
source
Excellent tips!!! good work
Do you think windows hello would work same way with Google workspace?
I often recommend customers to use multifactor unlock with face + trusted signal and + pin as a backup. Trusted signal could be one of several things, BUT my recommendation is mobile device. You should set up Dynsmic Lock which is done by pairing your computer with your phone and check dynamic lock. Then your computer is automatically locked within 60 seconds if you walk away from it either your phone! This also enables your phones proximity as your second unlock factor.
As Jonathan says, not many customers choose to enable this option. For them I recommend always using biometric login and use pin only as a last resort if the biometrics doesn’t work for some reason. Especially in public environments where your pin could be shoulder surfed IE seen when you type it in.
I wish there was an option to have your fingerprint work to log you into any device in the domain.
Great video Jonathan. Most of the enterprises have User identity synced with On prem AD. This poses another challenge where device requires Kerberos ticket to be provided to the device for WHfB to work efficiently. For next video may be.
Great video Jonathan thank you. One issue I have with Windows Hello for Business on my test Azure AD joined machine was access to on-prem resources. If I used biometrics to logon I couldn't access on prem resources. If I logged on using my 365 credentials, I then had access to on-prem resources. How can I configure Windows Hello for business to allow my users on-prem resource access? Thank you in advance.
Fantastic content (as usual). I did not know about Windows MFA, nor that you could centrally configure Windows Hello. Also loved that explanation of why a local PIN is more secure than a global password! Outstanding!
Great video as usual. One quick thought that came to my mind. What happens if the web cam on your laptop breaks or is faulty. How would you handle such a case?
Thanks for this. What do you recommend for hybrid environments? Cloud Trust?
Great and useful information as always.
Thank you so much for your dedication and for sharing your knowledge with us. In light of the upcoming migration of legacy MFA authentication methods in September, it would be useful if you could make a video explaining how to migrate legacy authentication methods.
What happens if you set multi factor whfb login with pin + fingerprint or facial, but users do not have finger or face set up in advance of this setting applying, will they be force to set it up also next time they login, or they wont be able to login because they didnt set it up in advance?
and is there a way to set PIN + either face or fingerprint, but not force both?