Forum Discussion

Nayuta's avatar
Nayuta
Copper Contributor
Jan 09, 2020

Intune - Windows 10 Login Restriction with Affinity

I need to restrict the login user of Windows 10 with Intune.

 

Can I do it, and how?

 

Regards,

  • Hey Nayuta,

     

    if we talking about Windows 10 Azure AD joined (AADJ) devices, there is currently no login restriction available. As soon as AADJ all Azure AD member can logon. With Autopilot they are not necessarily local administrators but there is an option to assign local administrators to certain AAD user in AAD. A login restriction to the enrollment user is not possible at the moment.

     

    best,

    Oliver

  • Hey Nayuta,

     

    if we talking about Windows 10 Azure AD joined (AADJ) devices, there is currently no login restriction available. As soon as AADJ all Azure AD member can logon. With Autopilot they are not necessarily local administrators but there is an option to assign local administrators to certain AAD user in AAD. A login restriction to the enrollment user is not possible at the moment.

     

    best,

    Oliver

    • Nayuta's avatar
      Nayuta
      Copper Contributor

      Hi Oliver Kieselbach,

       

      Thank you for answering my question. I completely understand the current Azure AD and Intune limitations.

       

      Very Best,

       

      nayuta

  • Hello @Nayuta ! What kind of login restriction do you want to achieve? Is it for a specifit application? Please give a bit more information. Kind Regards Oliwer Sjöberg
    • Nayuta's avatar
      Nayuta
      Copper Contributor

      Hi oliwer_sundgren, I need to block non-affinity user sign-in to Windows 10 and permit sign-in only an affinity user and additional local administrators.

      I thought it is a function area of the Intune, however, maybe is it about Azure AD?

Resources