Not Monitored
Tag not monitored by Microsoft.
36,581 questions
Your company policy requires that you use a different method to sign in
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 71%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKC%3C/text%3E%3C/svg%3E)
Kristian Cardona
6
Reputation points
Hi
We are testing out WHfB. We set up a Configuration profile for Windows Hello PIN which is working on the test devices that we are pushing it to. So at the login screen, it is working by accepting the PIN the user created. We did not enable Biometrics.
Now we are trying to log in to an app that uses the SSO on Azure, such as Company Portal, but when the user attempts to log in using the PIN, it shows an error as per the attached image
The test device is currently excluded from the legacy password policy.
We are using Azure AD Cloud Only for managing policies, devices and users and not Hybrid.
{count} vote
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 55.00000000000001%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Nielz 0 Reputation points2023-03-29T13:09:30.5766667+00:00 Have you tried adding the user or group to the "FIDO2 security key" authentication method?
https://portal.azure.com/#view/Microsoft_AAD_IAM/AuthenticationMethodsMenuBlade/~/AdminAuthMethods -
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 33%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Alan Shoop 0 Reputation points2024-02-22T17:01:38.8066667+00:00 Was there ever a resolution to this issue? Were you able to get it to work? Thanks!
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 56.00000000000001%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESN%3C/text%3E%3C/svg%3E)
Sang Nguyen 0 Reputation points2024-05-13T12:05:35.08+00:00 Check your MFA conditional access enforcement policy, your Yubikey sign-in was success, just about the MFA policy, switch to use "Require authentication strength" instead. I was managed to resolve this problem by this way.
Sign in to comment