What is the best way to accomplish that only the user who enrolled a Win10-device is allowed to logon at that specific device?
So we want the devices to be personal devices which only can be used by the person who got it.
Restrict Win10-devices only user enrolled allowed to logon
There is no direct path for this. The best you can do is script a solution that manipulates the deny or allow local logon privileges on the devices and deploy that script with Intune.
What happens if the user is no longer able to logon on to the device though (for whatever reason)?
@Chned-6770 Thanks for posting in our Q&A. From your description, I know that you want to allow just one user logons one Win-10 device. If there is any misunderstanding, feel free to let us know.
For this requirement, there's nothing directly built-in for this but maybe the following link will accomplish what you want.
https://www.inthecloud247.com/restrict-which-users-can-logon-into-a-windows-10-device-with-microsoft-intune/
Note: Non-Microsoft link, just for the reference.
However, it requires one profile for each Win-10 device. It makes a lot of work. So I agree with Jason.
Thanks for understanding and have a nice day.
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
@Chned-6770 I am currently standing by for further update from you and would like to know how things are going. If you have any questions or concerns on the recent information I've provided you, please don't hesitate to let me know.
4 people are following this question.
