Unfortunately, at this time, you must first log into your computer using a regular Windows account (aka non-Beyond Identity). Once that is done, follow the steps below to fix your Beyond Identity Desktop Login enrollment.
Scenario 1: I can't log in because my PIN has expired
- Open the Beyond Identity Authenticator app.
- If the credential shows that you are enrolled in Desktop Login, proceed to the next step. Otherwise, skip to Re-enroll in Desktop Login.
- Click on About this passkey.
- Scroll down and select View Settings which appears with the Desktop Login - Enrolled value.
- Click on the Edit link next to Beyond Identity Desktop PIN.
- Enter the correct PIN.
- Set a new PIN.
You are set to use the new PIN to log into your machine.
Scenario 2: I forgot my PIN, or my fingerprint doesn't work
- Open the Beyond Identity Authenticator app.
- If the credential shows that you are enrolled in Desktop Login, proceed to the next step. Otherwise, skip to Re-enroll in Desktop Login.
- Click on Un-enroll from Desktop Login. It is optional to re-boot the machine here.
- Now press Enroll in Desktop Login. You will be required to enter your Windows password to continue. Any fingerprints you previously enrolled with are retained, so it is unnecessary to capture that information again. Set a PIN.
Use the new PIN to log into your machine if the enrollment process completed successfully.
Scenario 3: I was enrolled, but now I'm not
For this particular scenario, you'll need to re-enroll in Desktop Login.
Re-enroll in Desktop Login
- Log into the Windows machine using an account that is a member of the Local Administrators group.
- From Services.msc stop the service named Beyond Identity Service.
- Delete %ProgramData%\BeyondIdentity\Service.db.
- Delete any files found in the hidden the %ProgramData%\BeyondIdentity\CacheData folder.
- Open Powershell with Run as Administrator privileges and view all the smart cards configured on the machine.
wmic path win32_PnPEntity where "ClassGuid like '{50DD5230-BA8A-11D1-BF5D-0000F805F530}'"get DeviceID,Name,Status
- Delete any certificates that are listed (typically only (ROOT\SMARTCARDREADER\0000):
tpmvscmgr destroy /instance ROOT\SMARTCARDREADER\0000
- Re-boot the machine.
- Log into the machine using the user's password.
- Open the Beyond Identity Authenticator application and click on Enroll in Desktop Login.
Comments
0 comments
Please sign in to leave a comment.