Windows 10 and 11 by default will only show the most recent signed in user, and currently signed in users. Kind of annoying for computers that are shared by a few others.
This can be changed to show all users that have signed in to the computer.
Requirements:
- Windows 10/11 Pro
- User account with administrative privileges
Method 1: Show all users via Local Group Policy Editor
To display all users added to a computer, follow these steps:
- Click on the Start menu and search for "gpedit.msc"
- Open "gpedit.msc"
- Navigate to the following path: Computer Configuration -> Administrative Templates -> System -> Logon
- Find the setting "Enumerate local users on domain-joined computers"
- Enable this setting
Method 2: Configure via Intune (For Enterprise Environments)
For organizations using Microsoft Intune, this setting can be deployed across multiple devices using a configuration profile. This method requires administrative access to Microsoft Endpoint Manager.
Instructions to Create "Enumerate local users on domain-joined computers" Policy in Intune
- Sign in to the Microsoft Endpoint Manager admin center.
- Navigate to Devices Configuration profiles.
- Click "Create profile".
- For Platform, select "Windows 10 and later".
- For Profile type, choose "Settings catalog".
- In the list of templates, select "Administrative Templates".
- Click "Create".
- In the Basics tab:
- Name: Enter "Show All Users on Login Screen"
- Description: "Displays all previously signed-in users on the logon screen, including local and Entra ID/AzureAD users, for easier access on shared computers."
- Click "Next".
- In the Configuration settings tab:
- Search for and select the setting "Enumerate local users on domain-joined computers"
- Set the setting to "Enabled"
- Click "Next".
- In the Assignments tab:
- Under Included groups, click "Add groups"
- Select "All Devices"
- Leave Filter and Filter mode as "None"
- Click "Next".
- In the Scope tags tab:
- Leave the default scope tag selected
- Review your settings and click "Create".
Note: After creation, you can monitor the policy's status:
- Device and user check-in status will show success and error counts
- Device assignment status shows all targeted devices, including pending assignments
- Per setting status allows you to view the configuration status of each setting across all devices and users
Comments
0 comments
Please sign in to leave a comment.