question

DanielWilliams-1839 avatar image
0 Votes"
DanielWilliams-1839 asked kaaven commented

Enabling passwordless sign in for Windows 10/11

I am the admin for a small business (~30 machines running a mix of Windows 10 and 11 Home editions). I am attempting to migrate towards passwordless sign on for key users using a Yubikey 5 NFC, but have run into a snag and am unsure of how best to proceed. Enabling Windows Hello seems to require either a Microsoft account, or Active Directory. We currently pay for Microsoft 365 for business, which apparently are not Microsoft accounts for the purposes of Windows login. My question is whether allowing users to use work emails as "Microsoft accounts" is supposed to by achieved by Azure Active directory. As in, is the intent that businesses looking to have employees do single sign on with work email pay for Azure Active directory? I just want to make sure that's the service I need to be looking at.

azure-ad-saml-ssoazure-ad-passwordless-authentication
· 4
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

kaaven avatar image kaaven ·

Microsoft account in this context is a private mail account.

You have Microsoft 365 Business and would need Windows 10/11 Pro to log in with your Work Account.


Tip: If you want to manage them easily, you should get Business Premium and connect them to Intune. This would simplify everything and with the new plan you'll even get Defender for Business.

If this was helpful, please Upvote and Accept Answer.
Else, please Comment with further information or related questions.

0 Votes 0 ·
kaaven avatar image kaaven kaaven ·

I hope your problem got solved, if so I would appriciate if you click "Accept Anwer".
If not, please specify what didn't work and I'll look into it.

0 Votes 0 ·
DanielWilliams-1839 avatar image DanielWilliams-1839 kaaven ·

We actually pay for Business Premium as well as Intune. But I take it that won't solve the problem of not having the machines running Windows Pro?

0 Votes 0 ·
kaaven avatar image kaaven DanielWilliams-1839 ·

Depending on your needs an E3 (or F3)-license gives you Windows Enterprice.
https://www.microsoft.com/en-us/microsoft-365/compare-microsoft-365-enterprise-plans

Besides that a Pro license is the way to go.

0 Votes 0 ·

0 Answers