Forum Discussion
Shared single-user device?
Hi LjubisaLivac
Like Moe_Kinani turning on Auto logon is not recommended.
If you want multiple users to use a single Azure AD account on a PC without giving them the account password I would suggest that you configure a Windows Hello PIN on the PCs in question. The PIN code is stored localy on the device and can not be used to sign-in to the account any where else.
You can use Intune to enforce a Windows Hello policy (Set minimum requirement etc) but the you will have to configure the PIN localy on the PC. Once setup users can use this PIN to sign-into the PC.
Integrate Windows Hello for Business with Microsoft Intune - Microsoft Intune | Microsoft Docs
Auto Logon or no password for Azure AD is something against Azure Practices, I wouldn’t go this route.
Here is a great guide on how to configure shared Azure AD device using Intune:
https://www.petervanderwoude.nl/post/configuring-shared-multi-user-devices/
Moe
Moe_Kinani Hi and thanks for the help! This could definitely solve me the issue,
but there is (I hope) one last step that I should overcome - If we use Guest account, is there a way somehow to add Guest access to SharePoint folder (I need to create them access in windows explorer, like in this pic):
- Yes, user is still able to access his account with Guest account and save to the pc if configured in the setting.
Check this out-
https://www.inthecloud247.com/configure-a-windows-shared-multi-user-device-with-intune/
