question

Andreas-9700 avatar image
0 Votes"
Andreas-9700 asked CiciWu2-MSFT answered

Compliance policy - Maximum minutes of inactivity before password is required

Hi,

I have configured Windows 10 Compliance Policy, but i am wondering about the setting "Maximum minutes of inactivity before password is required". This setting is always giving me "Not applicable" on Windows 10 devices. Is this not a Windows 10 setting ? If not why is it there ? If its a Windows 10 setting, what am I missing ?

On my apple and android devices is has the same setting, and there they are "compliant"

Thanks for reply

/R
Andy

mem-intune-generalmem-intune-device-configurations
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

CiciWu2-MSFT avatar image
1 Vote"
CiciWu2-MSFT answered

I tested in my environment and the “Maximum minutes of inactivity before password is required" setting shows Complaint in our environment.
92035-image.png

I assume this issue might be random to some users or devices. At such situation, we may need to collect logs and troubleshoot from the backend. Due to limit resource from community, it is highly suggested to create a free online support ticket to resolve this issue more effectively. Here is the link: https://docs.microsoft.com/en-us/mem/get-support

If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.



image.png (172.8 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

CiciWu2-MSFT avatar image
0 Votes"
CiciWu2-MSFT answered

I have done some research and found that this “Maximum minutes of inactivity before password is required" policy applies to Windows 10 and later, Windows Holographic for Business and Surface Hub. See: https://docs.microsoft.com/en-us/mem/intune/protect/compliance-policy-create-windows

At such situation, would you please locate to DeviceManagement logs in problematic Windows 10 to see if there is any related errors. In Event Viewer, the following event is logged under Applications and Services Logs/Microsoft/Windows/DeviceManagement-Enterprise-Diagnostics-Provider/Admin


5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Andreas-9700 avatar image
0 Votes"
Andreas-9700 answered

Hi,

thanks for answer. Yes I have also seen that is should be applied to Windows 10 devices, but all our customers have the same status. And we are talking about 10+ customers with around 100-200 machines. So to me it seems like this policy is not for Windows 10 Pro/ent. Could you verify in your environment that this compliance policy is applied to a Windows 10 Pro/ent machine ?

I have checked the event log but could not see anything related to that compliance setting.

The thing I want to achieve is to have the machines automatically lock the screen after X number of minutes. I have seen this link below, and tried to configure it, but still no lock.

https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-devicelock#devicelock-maxinactivitytimedevicelock


Regards
Andy

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.