IntuneTip: Reset Windows Hello for Business Using On-Demand Remediation
Sometimes users need to have their Windows Hello for Business container reset. This can happen for a myriad of reasons:
Biometrics stopped working “Something went wrong” errors during sign-in that won’t resolve Trust relationship between the credential and Microsoft Entra ID broke User suspects their PIN was observed or compromised Device was lost briefly and recovered — user wants to re-key For this support request, you can easily push a small script using Intune’s on-demand remediation feature (preview). All it does is use certutil to delete the Windows Hello container and return the exit code.