Has anyone ever successfully changed the TPM lockout settings?
Group Policy:
Computer Configuration > Administrative Templates > System > Trusted Platform Module Services
Standard User Lockout Duration
Standard User Individual Lockout Threshold
Standard User Total Lockout Threshold
Source: https://learn.microsoft.com/en-us/wi...ge-tpm-lockout
The corresponding registry settings:
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\TPM]
StandardUserAuthorizationFailureDuration
StandardUserAuthorizationFailureIndividualThreshold
StandardUserAuthorizationFailureTotalThreshold
I tried it with Windows Hello - but changing the settings did not affect the default values.
According to PowerShell "Get-Tpm": LockoutHealTime: 2 hours, LockoutMax: 32.
Does something else need to be configured somewhere?
Thanks and regards,
Martin
Question
mfessler 0
Hello everyone,
Has anyone ever successfully changed the TPM lockout settings?
Group Policy: Computer Configuration > Administrative Templates > System > Trusted Platform Module Services Standard User Lockout Duration Standard User Individual Lockout Threshold Standard User Total Lockout Threshold Source: https://learn.microsoft.com/en-us/wi...ge-tpm-lockout The corresponding registry settings: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\TPM] StandardUserAuthorizationFailureDuration StandardUserAuthorizationFailureIndividualThreshold StandardUserAuthorizationFailureTotalThresholdI tried it with Windows Hello - but changing the settings did not affect the default values.
According to PowerShell "Get-Tpm": LockoutHealTime: 2 hours, LockoutMax: 32.
Does something else need to be configured somewhere?
Thanks and regards,
Martin
Link to comment
Share on other sites
0 answers to this question
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.