# Usage guide: Windows Hello for Business

{% hint style="warning" %}
This page outlines various ways to use the pack, including use case examples.

Administrators can refer to the [Configuration guide: Windows Hello for Business](/platform/library-packs/security-and-compliance/windows-hello-for-business/configuration-guide-windows-hello-for-business.md) to set up and customize the installed content.
{% endhint %}

The **Windows Hello for Business** library pack enables EUC teams to:

* Enhance security by reducing the risk of phishing attacks and credential theft.
* Simplify user authentication with faster and more convenient login methods.
* Reduce IT workload by minimizing the need for password resets and management.
* Increase productivity by streamlining the login process for users.

In addition, this library pack offers a user campaign to drive awareness of proper safety procedures.

## Library pack uses

{% hint style="info" %}
Jump to [Use cases](#use-cases) on this page to see relevant scenario applications.
{% endhint %}

Use the library pack content for the following purposes.

### **Visibility**

The **Windows Hello for Business** [live dashboard](https://docs.nexthink.com/platform/user-guide/live-dashboards) is the starting point of this library pack. It monitors and manages WHfB deployment across your organization, providing an overview of activated devices and authentication methods. The dashboard shows the distribution of passwords, PINs, and biometrics, helping identify trends and areas for improvement. The library pack also includes a user campaign to promote secure sign-in methods and directs users to relevant documentation.

The remote action **Get Windows Hello readiness and usage** and **Get password expiry for Entra ID endpoints** are used to gather data for the live dashboard. The "Get Windows Hello readiness and usage" remote action is used to check enrollment and support features. The "Get password expiry for Entra ID endpoints" is used to show how many users have passwords expiring within the next 7 days.

Ensure that the remote actions trigger configuration is [scheduled](https://docs.nexthink.com/platform/user-guide/remote-actions/managing-remote-actions#triggering) before utilizing the dashboard.

{% hint style="info" %}
Query results by [investigating KPIs from the live dashboard](https://docs.nexthink.com/platform/latest/using-live-dashboards) or from [your own investigations](https://docs.nexthink.com/platform/latest/investigations).
{% endhint %}

### Education and awareness

Identify current practices to encourage the adoption of more secure authentication methods, then launch a campaign to educate users on the benefits while providing instructions for enabling and using alternative sign-in methods.

## Use cases

In addition to the relevant use cases covered below, you may uncover other troubleshooting scenarios specific to your environment.

### **Identifying devices for which the feature is not enrolled**

Drill down to device objects on the *Not enrolled devices* widget:

<figure><img src="/files/0GIOnWfD5g8hKzog7NUL" alt=""><figcaption></figcaption></figure>

1. From the *Investigations* page, find the **Drill down to** option in your query results and select **Devices**. Use the list of devices to activate the feature via GPO or other methods used in the organization.

<figure><img src="/files/K6Tt7fywedlSpHYVwsZl" alt=""><figcaption></figcaption></figure>

2. Use the list of devices to activate the feature via GPO or other methods used in the organization.

<figure><img src="/files/V0cUk3oOMZEmK6OcwcoL" alt=""><figcaption></figcaption></figure>

### **Encourage users to adopt safer authentication methods**

1. Drill down to devices where the last authentication was performed using a password.

<figure><img src="/files/zPm7eIBj17GGk6ehRvrA" alt=""><figcaption></figcaption></figure>

2. Select all devices and retrieve the associated users. Apply additional filters as needed, such as “AD user not empty”.

<figure><img src="/files/PFQndQsQP8Copx2gxifZ" alt="" width="563"><figcaption></figcaption></figure>

3. Deploy the “**Windows Hello for Business**” campaign to the selected users.

<figure><img src="/files/Ri8aQOaX3ZeajiWgni4S" alt="" width="375"><figcaption></figcaption></figure>

RELATED TOPICS

* [Managing live dashboards](/platform/user-guide/live-dashboards/managing-live-dashboards.md)
* [Managing remote actions](/platform/user-guide/remote-actions/setting-up-and-managing-remote-actions/managing-remote-actions.md)
* [Managing campaigns](/platform/user-guide/campaigns/managing-campaigns.md)
* [Configuration guide: Windows Hello for Business](/platform/library-packs/security-and-compliance/windows-hello-for-business/configuration-guide-windows-hello-for-business.md)


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.nexthink.com/platform/library-packs/security-and-compliance/windows-hello-for-business/usage-guide-windows-hello-for-business.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.