The Windows Club

TheWindowsClub covers authentic Windows 11, Windows 10 tips, tutorials, how-to's, features, freeware. Created by Anand Khanse, MVP.

PIN Sign-in disabled when Windows is joined to Domain

Download Windows Speedup Tool to fix errors and make PC run faster

The PIN sign-in in Windows 11/10 helps us to log in to the system using an easy-to-remember 4 digit number. PIN sign-in is a bit handy as compared to Password and Picture password options. However, one disadvantage of PIN sign-in, is that it doesn’t work when your system is in Safe Mode.

PIN Sign-in is disabled when Windows is joined to Domain

If you are running a Windows 11/10 system that is joined to a domain, you may not able to create or log on using PIN.

When you visit the Settings > Accounts > Sign-in options section to create the PIN, you may find that the option to create is grayed out i.e. disabled.

There is no error or message displayed for the option disabled there. If your PIN Sign-in is disabled and grayed out when Windows is joined to a domain, follow this tutorial to turn on and enable PIN sign-in for Domain users.

Enable and Turn on PIN sign-in for Domain users in Windows

You can turn on & enable PIN sign-in in Windows 11/10 using the Group Policy if your PIN Sign-in is disabled when the system is joined to a Domain. This method is only In Windows 11/10/8 Pro & Enterprise Editions.

1. Press Windows Key + R combination, type put gpedit.msc in Run dialog box and hit Enter to open the Local Group Policy Editor.

Prevent Store Apps From Pinning To Start Screen When Installed Prevent Users From Resetting Internet Explorer Settings

2. In the left pane of Local Group Policy Editor, navigate here:

Computer Configuration -> Administrative Templates -> System -> Logon -> Turn on pin sign-in

Turn on & enable PIN sign-in for Domain users

3. In the right pane of the above-shown window, look for the setting named Turn on PIN sign-in which must be Not Configured by default. Double click on the same setting to get this:

Enable & Turn on PIN sign-in for Domain users

4. Finally, in the above-shown window, click Enabled and then click Apply followed by OK.

You can now close the Local Group Policy Editor window and reboot the machine. After restarting the system, you should be able to use create and use PIN sign-in.

I hope this helps – Good luck!

Why is the Windows PIN disabled?

The Windows PIN might be disabled due to policy settings or a system issue. Ensure your device meets the prerequisites for using a PIN, like enabling TPM and secure boot. Check Group Policy Editor or contact your system administrator if you are on a network, or consult Microsoft’s support for further assistance.

How do I enable PIN login for domain?

To enable PIN login for a domain, open Group Policy Editor, navigate to Computer Configuration > Administrative Templates > System > Logon, and enable the “Turn on convenience PIN sign-in” setting. Ensure the domain’s security policies support PIN usage and synchronize these changes across your network to enable functionality.

KapilArya@TWC

An Electrical Engineer by profession, Kapil is a Microsoft MVP and a Windows Insider MVP. Please read the entire post & the comments first & create a system restore point before making any changes to your system.