Why can User Still Sign-in to Domain Joined Computer Using PIN After Account is Locked/Disabled?

J

Jeremy Chang WHS

This is a huge security issue.1. Test user Microsoft Azure AD account has been disabled and sessions revoked through Microsoft Azure.2. Test user's domain joined computer was restart using remote software.3. Test user can still login to their computer with pin or face ID whether the computer is connected to the internet or not.The ability for them to login was not due to a delay in the system. I made sure that the test user could not access M365 resources before locking the computer and restarting it. Why is the user still able to login to the computer? Microsoft should remove the cache'd pass

Continue reading...
 
You must log in or register to reply here.

Similar threads

M
Windows 10 Local user account disabled after Windows cannot access PIN
Replies
0
Views
26
Matt Laib
M
M
User can't rdp to a computer with his AzureAD account, but i can with mine
Replies
0
Views
36
Moonen Quentin (ZP FamenneArdenne)
M
D
The USB ports and Internet is disabled and forgot the admin PIN password.
Replies
0
Views
35
Deepak Tiwari2
D
E
Cannot log in or change the PIN due to the computer still on the old account that got migrated
Replies
0
Views
40
Eyjaaaaa
E
K
Why can I no longer connect to my Microsoft account ?
Replies
0
Views
25
Karina Bazinet
K
Back
Top Bottom