Intune Password Policy Issue

Copper Contributor

Hey, Good afternoon


we are setting up our intune MDM to meet soc2 compliance and the only issue I have ran into so far is when checking the settings I noticed the password Policy is only enforcing on the PIN login and not the actual password to the account, would this need to be configured to use a password instead of a pin inside of O365? I was hoping we could set this up where the password policy is being enforced to the account login but have the option to use a pincode to login as well. The way it is being enforced the policy is enforcing the PIN to act as a password and not a PIN.


:p sorry if that got confusing at the end 

4 Replies

@jomurbach  as the vision of Microsoft is to go passwordless and with MFA and Pin this has been made possible so these are the new standards going forward. still the users get the option to switch between password and pin option on their own level while they are loging on their windows 10 devices.

@PDostiyar Thank you for the Reply, As the option is available currently on my test laptops to switch between password/pin the issue is the password Policy is only affecting the pin. I am assuming this will have to be changed in O365 so the Intune policy properly reflects. As it stands right now  the Pin is actually a password and the actual password to login to the laptop isn't being enforced and can be anything 

@jomurbach  All the setting and Policies could be done on the Azure or Intune section that will take effect on the sytem on Azure AD join or registered devices.


You need to disable WHFB from Auto Enrollment before enrolling the devices. For the devices that already using PIN, the article below explains how to remove pins from them, you can push it using Intune PowerShell.