Event banner

Windows Office Hours: May 16, 2024

Event Ended
Thursday, May 16, 2024, 08:00 AM PDT
In-Person

Event details

Get answers to your questions about adopting Windows 11 and managing the Windows devices used by remote, onsite, and hybrid workers across your organization. Get tips on keeping devices up to date ef...
Char_Cheesman
Updated May 16, 2024
Office Hours
Jason_Sandys's avatar
Jason_Sandys
Icon for Microsoft rankMicrosoft
May 16, 2024
Same answers here ultimately. By design and working as expected. As noted, you 100% should also be using Conditional Access to gate access from personal devices and should be blocking Intune enrollment on personal devices. Once you do that, I don't see or know of any challenges here although we're open to feedback on this. Note that the initial user "login" isn't a full login at all, it's mainly providing credentials to Entra to authorize the activity and prepare the device locally for the end user. Once AP and OOBE are finished, then the user must login. No, we cannot persist credentials between these two steps (from memory, we actually used to but this was weak from a security perspective).
Machi1145's avatar
Machi1145
Copper Contributor
May 16, 2024
Thanks for the information and assistance! I'll add to my to do list to make sure we are locking that down and then hopefully open enrollment up to make things easier.
Date and Time
May 16, 20248:00 AM - 9:00 AM PDT