Learn
Documentation
Support
Community

Usage guide: Windows Hello for Business

This page outlines various ways to use the pack, including use case examples.

Administrators can refer to the Configuration guide: Windows Hello for Business to set up and customize the installed content.

The Windows Hello for Business library pack enables EUC teams to:

  • Enhance security by reducing the risk of phishing attacks and credential theft.

  • Simplify user authentication with faster and more convenient login methods.

  • Reduce IT workload by minimizing the need for password resets and management.

  • Increase productivity by streamlining the login process for users.

In addition, this library pack offers a campaign to drive awareness.

Library pack uses

Jump to Use cases on this page to see relevant scenario applications.

Use the library pack content for the following purposes.

Encourage the adoption of more secure authentication methods by identifying current practices, then launch a campaign to educate users on the benefits while providing instructions for enabling and using alternative sign-in methods.

Visibility

The Windows Hello for Business live dashboard is the starting point of this library pack. It monitors and manages WHfB deployment across your organization, providing an overview of activated devices and authentication methods. The dashboard shows the distribution of passwords, PINs, and biometrics, helping identify trends and areas for improvement. The library pack also includes a user campaign to promote secure sign-in methods and directs users to relevant documentation.

The remote action Get Windows registry key values is used to gather data for the live dashboard. Ensure that the remote action trigger configuration is scheduled before utilizing the dashboard.

Query results by investigating KPIs from the live dashboard or from your own investigations.

Use cases

In addition to the relevant use cases covered below, you may uncover other troubleshooting scenarios specific to your environment.

Identifying devices for which the feature needs to be activated

Drill down to device objects on the “Not activated devices by entity” bar chart for one of the entities.

When on the investigations page, there is an option to remove the filter and see devices for the entire organization. Use the list of devices to activate the feature via GPO or other methods used in the organization.

Encourage users to adopt safer authentication methods

Drill down to devices where the last authentication was performed using a password.

Select all devices and retrieve the associated users. Apply additional filters as needed, such as “AD user not empty”. Send the “Windows Hello for Business” campaign to the selected users.

Send the “Windows Hello for Business” campaign to the selected users.

RELATED TOPICS

Last updated

© Nexthink

Privacy policyResponsible Disclosure Policy