Windows Hello for Business - Biometrics

Regular Contributor

Hi all,

 

I disabled WHFB tenant wide, but created an Identity Protection configuration for it and applied it to one test machine. That works fine.

 

Reading the documentation here: https://learn.microsoft.com/en-us/mem/intune/protect/identity-protection-windows-settings , it states if I leave Allow Biometrics to "Not Configured" 

 

  • Not configured (default) - Windows Hello for Business prevents biometric authentication (for all account types).

It will prevent biometrics. This doesn't appear to be the case as my test laptop is prompting for fingerprint enrollment during the WHFB setup. 

 

Is the documentation wrong? Is there anyway I can disable biometrics for a device or group of devices?

0 Replies