使用 Intune 在整合了 Microsoft PIN 重設服務的 Windows 裝置上重設密碼Reset the passcode on Windows devices integrated with the Microsoft PIN Reset Service using Intune

與 Microsoft Pin 重設服務整合的 Windows 裝置重設密碼功能,能讓您為執行 Windows 10 行動裝置版的裝置產生新的密碼。The reset passcode capability for Windows devices integrates with the Microsoft Pin Reset Service to let you generate a new passcode for devices that run Windows 10 Mobile. 這些裝置必須執行 Windows 10 Creators Update 或更新版本。The devices must be running the Windows 10 Creators Update, or later.

支援的平台Supported platforms

  • Windows - 支援 Windows 10 Creators Update 和更新版本 (已加入 Azure AD)Windows - Supported on Windows 10 Creators Update and later (Azure AD joined)
  • Windows Phone - 不支援Windows Phone - Not supported
  • iOS - 不支援iOS - Not supported
  • macOS - 不支援macOS - Not supported
  • Android - 不支援Android - Not supported

開始之前Before you start

您必須先將 PIN 重設服務上架到您的 Intune 租用戶,並設定您管理的裝置,才能在您可以管理的 Windows 裝置上遠端重設密碼。Before you can remotely reset the passcode on Windows devices you can manage, you must onboard the PIN reset service to your Intune tenant, and configure devices you manage. 請依照這些指示開始作業:Follow these instructions to get that set up:

連接 Intune 與 PIN 重設服務Connect Intune with the PIN reset service

  1. 前往 Microsoft PIN 重設服務整合網站,以管理 Intune 租用戶所用的租用戶管理員帳戶登入。Visit Microsoft PIN Reset Service Integration website, and sign in using the tenant administrator account you use to manage your Intune tenant.
  2. 登入之後,按一下 [接受] 同意 PIN 重設服務,以存取您的帳戶。After you log in, click Accept to give consent for the PIN reset service to access your account.
    PIN 重設服務權限頁面 PIN reset service permissions page
  3. 在 Azure 入口網站中,您可以從企業應用程式中確認 Intune 和 PIN 重設服務是否整合,所有的應用程式刀鋒視窗如以下螢幕擷取畫面所示:In the Azure portal, you can verify that Intune and the PIN reset service were integrated from the Enterprise applications - All applications blade as shown in the following screenshot:
    Azure 中的 PIN 重設服務應用程式 PIN reset service application in Azure
  4. 使用您的 Intune 租用戶管理員認證登入此網站,再次選擇同意 [接受] 服務以存取您的帳戶。Log in to this website using your Intune tenant admin credentials and, again, choose Accept to give consent for the service to access your account.

設定 Windows 裝置使用 PIN 重設Configure Windows devices to use PIN reset

若要在您管理的 Windows 裝置上設定 PIN 重設,請使用 Intune Windows 10 自訂裝置原則啟用功能。To configure PIN reset on Windows devices you manage, use an Intune Windows 10 custom device policy to enable the feature. 使用下列 Windows 原則設定服務提供者 (CSP) 設定原則:Configure the policy using the following Windows policy configuration service provider (CSP):

  • 裝置為 - ./Device/Vendor/MSFT/PassportForWork/<租用戶識別碼>/Policies/EnablePinRecoveryFor devices** - ./Device/Vendor/MSFT/PassportForWork/tenant ID/Policies/EnablePinRecovery

<租用戶識別碼>是指您的 Azure Active Directory,您可以從 Azure Active Directory 的 [屬性] 頁面取得 Directory 識別碼。tenant ID refers to your Azure Active Directory, Directory ID which you can obtain from the Properties page of Azure Active Directory.

針對此 CSP 將值設定為 TrueSet the value for this CSP to True.

重設密碼的步驟Steps to reset the passcode

  1. 登入 Azure 入口網站。Sign into the Azure portal.
  2. 選擇 [更多服務] > [監視 + 管理] > [Intune]。Choose More Services > Monitoring + Management > Intune.
  3. 在 [Intune] 刀鋒視窗中,選擇 [裝置]。On the Intune blade, choose Devices.
  4. 在 [裝置] 刀鋒視窗中,選擇 [管理] > [所有裝置]。On the Devices blade, choose Manage > All devices.
  5. 選取您要重設密碼的裝置,然後在該裝置的 [裝置內容] 刀鋒視窗中選擇 [新密碼]。Select the device for which you want to reset the passcode, and then, on the device properties blade, choose New passcode.
  6. 從顯示的確認畫面中選擇 [是]。From the confirmation that appears, choose Yes. 密碼即產生,而且會在入口網站中顯示七天。The passcode is generated, and is displayed in the portal for the next seven days.

後續步驟Next steps

如果密碼重設失敗,入口網站會提供連結供您取得詳細資訊。If the passcode reset fails, a link is provided in the portal to get more information.