Mar 18 2022 08:21 AM - edited Mar 18 2022 08:21 AM
Hi,
For a couple of days now we've introduced Windows Hello for Business (WHfB) to a subset of test devices from within Intune. Everything works as expected except for one thing I guess:
When someone tries to logon with a non-enterprise account (eg. @live.nl) in Teams, and/or Onedrive, the machine is prompting to authenticate with WHfB. Am I missing something? Why is this happening and how can we prevent this?
Any thoughts are welcome.
Mar 18 2022 12:45 PM
Mar 19 2022 12:45 AM - edited Mar 19 2022 01:44 AM
Not sure if you can but what I'm more interested in is, why is this happening for personal accounts and how can we prevent this?
Mar 20 2022 07:59 PM
Mar 21 2022 01:46 AM - edited Mar 21 2022 01:53 AM
We are using the Settings catalog and basically used all the Windows Hello settings available which is already scoped to users, the enterprise accounts are not guests. See the below snippet from my environment:
The issue shows up in the non-work Teams app.
I'm not sure what you mean by "unlink it from Email accounts". Can you elaborate?
Mar 21 2022 04:08 AM - edited Mar 21 2022 04:13 AM
Yes unlink them, is it possible to change from Catalog Setting to Regular Template Profile- Identity Protection for testing?
Moe
Mar 21 2022 05:44 AM - edited Mar 21 2022 05:53 AM
Unlinked it and tried the Regular Template Profile- Identity Protection: same issue.
Mar 21 2022 06:22 AM