Category Archives: Windows Hello for Business

TODO: Periodically reset the password for the KRBTGT_AzureAD account when using Hybrid Cloud Trust

Microsoft offers Hybrid Cloud Trust as a way to offer people with synchronized Work or School accounts on Azure AD-joined device seamless single sign-on access to Active Directory-integrated resources. When they sign in with Windows Hello for Business (WHfB), the Active Directory-integrated functionality doesn’t prompt for username and password. How Hybrid Cloud Trust works Under […]


You’re invited to the IT-University Masterclass – Windows Hello for Business Hybrid Access explained

On March 7th, 2022, I will be presenting a masterclass, together with Raymond Comvalius for Dutch Raymond and I will be presenting on establishing device trust in the modern age. “Every time you choose Hybrid Azure AD Join over Azure AD Join an angel loses its wings.” The Microsoft product team makes it abundantly […]