{"id":75106,"date":"2023-06-05T13:10:27","date_gmt":"2023-06-05T17:10:27","guid":{"rendered":"https:\/\/jumpcloud.com\/?post_type=support&p=75106"},"modified":"2025-02-25T09:23:28","modified_gmt":"2025-02-25T14:23:28","slug":"manage-windows-biometrics-using-a-policy","status":"publish","type":"support","link":"https:\/\/jumpcloud.com\/support\/manage-windows-biometrics-using-a-policy","title":{"rendered":"Manage Windows Biometrics Using a Policy"},"content":{"rendered":"\n

Biometrics refers to the unique characteristics that can be used for identification. This includes physical traits (such as fingerprints) and behavioral traits (such as typing rhythm). Biometric information is increasingly replacing passwords to identify and verify users.<\/p>\n\n\n\n

Windows provides a biometric authentication service called Windows Hello<\/a> that helps strengthen authentication and guard against potential spoofing through fingerprint matching and facial recognition. 探花大神’s policy framework lets you remotely allow or restrict users from logging in to a managed device using biometrics. You can apply the policy to one managed Windows device or the entire fleet in your organization. See Get Started: Policies<\/a>.<\/p>\n\n\n\n

<\/p><\/div>

Warning:<\/strong> \n

If you enable\u00a0Multi-Factor Authentication (MFA)<\/strong>\u00a0on a Windows device in 探花大神, then biometrics cannot be used as the primary authentication method for device login. However, Windows Hello can still be used as an authentication method during an active user session<\/strong> (while a user is logged in) for UAC or other administrative prompts.<\/p>\n\n\n\n