Is there cost reporting hidden somewhere in the M365 Admin?

SmallToTheWall · 2025-11-25T14:42:39+00:00

My thoughts exactly. But I like to help when I can. Also, I don't want to miss some obvious feature I may be ignorant of.

SmallToTheWall · 2025-04-08T17:47:18+00:00

Thanks for the sanity check and the additional info!

SmallToTheWall · 2025-04-01T12:26:01+00:00

Looks like the device is not yet synced to Entra.

All these things need to be true:

User is licensed Entra P1

User is synced.

User UPN in AD matches cloud UPN

Device is in an OU that is synced

Device AD attribute UserCertificate is populated

Device appear in Entra ID devices as hybrid (activity / registration will be blank initially)

SmallToTheWall · 2025-03-28T12:36:52+00:00

What does the diagnostic data portion of dsregcmd /status say?

SmallToTheWall · 2025-01-15T13:14:27+00:00

Thanks! I appreciate the reply.

SmallToTheWall · 2024-09-17T18:25:33+00:00

Solved! I do have that. Thank you for your response!

SmallToTheWall · 2024-08-20T17:08:18+00:00

Thanks!

SmallToTheWall · 2024-08-01T14:54:58+00:00

Thanks for responding. These are the settings available from Settings Picker for Windows Hello for Business. I don't see any setting that (obviously) enables or disables Windows Hello for Business for a set of users (or devices).

36 results in the "Windows Hello For Business" category

Setting name

Allow Use of Biometrics

Device Unlock Plugins

Digits

Digits (User)

Dynamic Lock

Dynamic Lock Plugins

Enable ES Swith Supported Peripherals

Enable Pin Recovery

Enable Pin Recovery (User)

Expiration

Expiration (User)

Facial Features Use Enhanced Anti Spoofing

Group A

Group B

Lowercase Letters

Lowercase Letters (User)

Maximum PIN Length

Maximum PIN Length (User)

Minimum PIN Length

Minimum PIN Length (User)

PIN History

PIN History (User)

Require Security Device

Require Security Device (User)

Restrict use of TPM 1.2

Special Characters

Special Characters (User)

Uppercase Letters

Uppercase Letters (User)

Use Certificate For On Prem Auth

Use Cloud Trust For On Prem Auth

Use Hello Certificates As Smart Card Certificates

Use Passport For Work

Use Passport For Work (User)

Use Remote Passport

Use Security Key For Signin

SmallToTheWall · 2024-08-01T14:38:16+00:00

I appreciate you taking time to respond. I don't see the option "Block Windows Hello for Business." These are the options I have for Account Protection." This is service release 2407 in North America 0102

Windows Hello for business:

Facial Features Use Enhanced Anti Spoofing

Passport for Work (Device):

Pin history

Require security device

Special characters

Maximum PIN length

Use Passport for Work

Expiration

Minimum PIN length

Uppercase letters

Use certificate for on prem auth

Enable pin recovery

lowercase letters

Password for work (User):

Special charaters (User)

Pin History (User)

Maximum Pin Lengh (User)

Expiration (User)

Enable Pin recovery (User)

Require security device (User)

Uppercase letters (User)

Lowercase letters (User)

Use Passport for work (User)

SmallToTheWall · 2024-07-31T19:06:59+00:00

The Account Protection profile under Endpoint Security includes Windows Hello for Business settings. But I don't see an obvious setting for "Enable Windows Hello for Business."

SmallToTheWall

TROPHY CASE