在 Intune 中重置或删除设备密码Reset or remove a device passcode in Intune

本文档讨论了 Android Enterprise(以前称为 Android for Work 或 AfW)设备上的设备级密码重置以及工作配置文件密码重置。This document discusses both device level passcode reset and work profile passcode reset on Android enterprise (formerly called Android for Work, or AfW) devices. 请务必记下这一区别,因为每种要求都有所不同。It's important to note this distinction as requirements for each can vary. 设备级密码重置会重置整个设备的密码。A device level passcode reset resets the passcode for the entire device. 工作配置文件密码重置仅重置 Android 企业设备上用户工作配置文件的密码。A work profile passcode reset resets the passcode only for the user's work profile on Android enterprise devices.

支持设备级别密码重置的平台Supported platforms for device level passcode reset

平台Platform 是否支持?Supported?
版本在 6.x 及以下的 Android 设备Android devices on version 6.x or earlier Yes
以设备所有者身份注册的 Android Enterprise 设备Android Enterprise devices enrolled as Device Owner Yes
iOS/iPadOS 设备iOS/iPadOS devices Yes
通过用户注册进行注册的 iOS/iPadOS 设备iOS/iPadOS devices enrolled with User Enrollment No
使用工作配置文件注册的 Android Enterprise 个人拥有的/公司拥有的设备Android Enterprise personally-owned/corporate-owned devices enrolled with a work profile No
版本在 7.0 及以上的 Android 设备Android devices on version 7.0 or later No
macOSmacOS No
WindowsWindows No

对于 Android 设备,仅在运行 6.x 或更早版本的设备上或在以展台模式运行的 Android Enterprise 设备上支持设备级密码重置。For Android devices, device level passcode reset is only supported on devices running 6.x or earlier, or on Android enterprise devices running in Kiosk mode. 此限制是因为 Google 不再支持从设备管理员授权应用中重置 Android 7 设备的密码,这适用于所有 MDM 供应商。This restriction is because Google removed support for resetting an Android 7 device's passcode/password from within a Device Administrator granted app and applies to all MDM vendors.

支持 Android 企业工作配置文件密码重置的平台Supported platforms for Android enterprise work profile passcode reset

平台Platform 是否支持?Supported?
使用工作配置文件注册并运行 8.0 及更高版本的 Android 企业设备Android enterprise devices enrolled with a work profile and running version 8.0 and later Yes
Android Enterprise 公司拥有的使用工作配置文件的设备Android enterprise corporate-owned devices with a work profile Yes
使用工作配置文件注册并运行 7.x 及更早版本的 Android 企业设备Android enterprise devices enrolled with a work profile and running version 7.x and earlier No
运行 7.x 及更早版本的 Android 设备Android devices running version 7.x and earlier No

要创建新的工作配置文件密码,请使用重置密码操作。To create a new work profile passcode, use the Reset Passcode action. 此操作会提示重置密码,并仅为工作配置文件创建新的临时密码。This action prompts a passcode reset and creates a new, temporary passcode for the work profile only.

重置密码Reset a passcode

  1. 使用以下任何角色登录到 Microsoft Endpoint Manager 管理中心:Azure Active Directory 全局管理员、Azure Active Directory Intune 服务管理员、支持人员或角色管理员。Sign in to the Microsoft Endpoint Manager admin center with any of the following roles: Azure Active Directory Global Admin, Azure Active Directory Intune Service Admin, Helpdesk Operator, or Role Administrator.
  2. 依次选择“设备”和“所有设备” 。Select Devices, and then select All devices.
  3. 从你管理的设备的列表中,选择一个设备,然后选择“重置密码” 。From the list of devices you manage, select a device, and choose Reset passcode.

重置 Android 工作配置文件和设备所有者设备的密码Reset Android work profile and Device Owner passcodes

受支持的使用工作配置文件注册的 Android Enterprise 个人拥有的和公司拥有的工作配置文件设备会为最终用户接收新的托管配置文件解锁密码或托管配置文件质询。Supported Android Enterprise personally-owned and corporate-owned work profile devices enrolled with a work profile receive a new managed profile unlock password or a managed profile challenge for the end user.

对于运行版本 8.x 或更高版本的 Android Enterprise 个人拥有的工作配置文件设备,最终用户会在注册完成后立即收到激活其重置密码的通知。For Android Enterprise personally-owned work profile devices running version 8.x or later, end users get notified to activate their reset passcode right after enrollment completes. 需提供和设置工作配置文件密码时会显示该通知。The notification is displayed if a work profile password is required and set. 在密码输入后,通知就会消除。After their passcode is entered, the notification is dismissed.

从控制台中选择“重置密码”后,会向管理员显示一个临时密码。当设备运行版本 8.x 或更高版本时,将为以下设备提供此密码:After the reset passcode is selected from the console, a temporary passcode is presented to the admin. This passcode is provided for the following devices when running version 8.x or later:

  • Android Enterprise 设备所有者Android Enterprise device owner
  • Android Enterprise 个人拥有的工作配置文件Android Enterprise personally-owned work profile
  • Android Enterprise 公司拥有的工作配置文件Android Enterprise corporate-owned work profile

必须在设备上输入临时密码。The temporary passcode must be entered on the device. 设备的临时密码将在控制台中显示七天。The temporary passcode for the device will be displayed in the console for seven days.

删除 iOS/iPadOS 密码Remove iOS/iPadOS passcodes

系统会从 iOS/iPadOS 设备中删除密码,而不是重置密码。Instead of being reset, passcodes are removed from iOS/iPadOS devices. 如果设置了密码符合性策略,则设备会提示用户在“设置”中设置新密码。If there's a passcode compliance policy set, the device will prompt the user to set a new passcode in Settings.

后续步骤Next steps

要查看刚执行的操作的状态,请在“设备”中选择“设备操作” 。To see the status of the action you just took, in Devices, select Device actions.