Menu
CCMEXEC.COM – Enterprise Mobility
  • Home
  • General
  • Configuration Manager
  • Windows 10
  • Windows 11
  • Intune
  • GitHub
  • About
CCMEXEC.COM – Enterprise Mobility

Co-Management / Intune – Wipe device after x failed logins

Posted on November 7, 2019November 7, 2019 by Jörgen Nilsson

I did a presentation at Techdays Sweden on security features in M365. I still get the question many times on what the benefits of Co-Management is that is why this post is written. There are many great features we can use when using Intune / Co-Management for managing our Windows 10 devices. Now that Microsoft Endpoint Manager is announced I hope many more will move to Co-Management.

One is to be able to wipe a device if it is stolen or lost for example. More and more laptops have built-in WWAN and then they are connected, and we can wipe them. Which I had a customer that had a need of last week, but they aren’t using Co-Management so, sorry… 🙁

Another one which really few have tested and know how it works is the possibility to wipe a Windows 10 device after x number of unsuccessful logins. It will not actually wipe the device it will reboot the computer and set it in Bitlocker Recovery mode. Awesome really.
If BitLocker is not used it will only reboot the machine, basically useless. And for everyone that is using BitLocker without PIN this is a great feature.

Here is a short video on how it looks for the end user, in this video I have the above configuration set to 5 attempts.

There are many reasons to start with Co-Management and Intune Modern management. If you haven’t already test it out!

2 thoughts on “Co-Management / Intune – Wipe device after x failed logins”

  1. Magnus says:
    November 7, 2019 at 1:05 pm

    Nice article, wherre do I find this device lock settings? I have search all over Intune 🙂

    Reply
  2. Anina says:
    December 27, 2019 at 10:52 pm

    Hi, so in other words – since “how to hack bitlocker” is a quick google – using this form of “security” is no security because the device is not wiped, hardly protected?!?!?

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

My name is Jörgen Nilsson and I work as a Senior Consultant at Onevinn in Malmö, Sweden. This is my blog where I will share tips and stuff for my own and everyone elses use on Enterprise Mobility and Windows related topics.
All code is provided "AS-IS" with no warranties.

Recent Posts

  • New settings in Intune Security Baseline Windows 11 24H2 -2504
  • Managing extensions in Visual Studio Code
  • Reinstall a required Win32app using remediation on demand
  • Administrator protection in Windows 11 – First look
  • Remediation on demand script – ResetWindowsUpdate
©2025 CCMEXEC.COM – Enterprise Mobility | WordPress Theme by Superb Themes
This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish.Accept Reject Read More
Privacy & Cookies Policy

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Non-necessary
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
SAVE & ACCEPT