Windows 10

Windows 10: Use a PIN Instead of a Password to Sign In

The ability to sign in with a PIN is not new to Windows 10, but Microsoft is now encouraging users during OS installation to consider using a PIN instead of a password.

This isn’t the first time that I’ve written about passwords recently on the Petri IT Knowledgebase. In Goodbye Passwords: Windows 10 Passport, I outlined a new feature in Windows 10 that works with works with Identity Providers (IDPs), such as Azure Active Directory (AAD) and Windows Server Active Directory, to authenticate users with a certificate or asymmetric public/private key pair that’s generated as part of a two-factor authentication enrollment process.

Adding or changing a PIN in Windows 10 (Image Credit: Russell Smith)
Adding or changing a PIN in Windows 10 (Image Credit: Russell Smith)

If you’ve installed Windows 10, as opposed to upgrading from Windows 7 or Windows 8.1, you may have noticed that you’re encouraged, after entering an email address and password to log with a Microsoft account, to set a PIN code to unlock the device. Microsoft even goes as far as to state that this is preferable to using your Microsoft account password.

Are PIN codes safer than passwords?

According to Microsoft, yes. The reasoning is that if someone discovers the PIN, by looking over your shoulder as you log in for example, they only get access to the device and not complete ownership of your Microsoft account. Once logged in, the imposter would need to know your existing Microsoft account password in order to change it and take ownership, so while using a PIN doesn’t provide full protection, it does limit the amount of damage that can be done.

Sponsored Content

Maximize Value from Microsoft Defender

In this ebook, you’ll learn why Red Canary’s platform and expertise bring you the highest possible value from your Microsoft Defender for Endpoint investment, deployment, or migration.

But there are some other reasons to use a PIN, too. Passwords are often easy to guess as people use information that is relevant to them, such as the name of their pet or favorite celebrity. PINs tend to be more obscure and harder to guess, but can also be prone to the ‘convenience’ factor if a cellphone number or date of birth is used.

Faster login

The best thing I’ve found about using a PIN instead of a password is that I’m able to log in faster. I tend to lock my desktop out of habit, even when I’m alone, and even if you’re not as fastidious as I am, the chances are your PC is configured to automatically lock after having been away for a period of time.

There are two languages installed on my notebook, and entering a password either involves having to check which language is selected before typing, entering my password and hoping for the best, or having to enter the password for a second time after having selected the correct language, which is very frustrating especially when I might need to enter my password many times every hour. The other enemy is CAPS LOCK, and while Windows will warn you if CAPS LOCK is enabled, it still requires an extra key press before entering your password.

Add a PIN

If you didn’t set up a PIN when installing Windows 10, here’s how to add a PIN to the device:

  • Select Settings from the Start menu.
  • Select Accounts in the Settings app.
  • On the ACCOUNTS page, select Sign-in options from the options on the left.
  • Click Add below PIN.
  • Verify your Microsoft account password and click OK.
  • Now enter a PIN for device and click Finish.

If you want to change the PIN at a later time, you can come back to the ACCOUNTS screen in the Settings app and click Change under PIN.

Related Topics:


Don't have a login but want to join the conversation? Sign up for a Petri Account

Comments (1)

One response to “Windows 10: Use a PIN Instead of a Password to Sign In”

  1. <p>I'm running a new (4 months old) HP Spectre x360 with Windows 10 and when I set it up I established a PIN. The fingerprint reader never worked so yesterday I contacted HP and after much frustration on the tech's part, fingerprint reader now works. However they changed something and I can no longer use my PIN, it requires my Password. I've read much about establishing a PIN in lieu of Password. Windows 10 thinks I have a PIN as it offers me to CHANGE it or REMOVE it, but nowhere can I find a way to have it default to PIN instead of PASSWORD if fingerprint reader fails or I just prefer PIN.</p><p><br></p><p>Any advice would be appreciated.</p>

Leave a Reply

IT consultant, Contributing Editor @PetriFeed, and trainer @Pluralsight. All about Microsoft, Office 365, Azure, and Windows Server.
External Sharing and Guest User Access in Microsoft 365 and Teams

This eBook will dive into policy considerations you need to make when creating and managing guest user access to your Teams network, as well as the different layers of guest access and the common challenges that accompany a more complicated Microsoft 365 infrastructure.

You will learn:

  • Who should be allowed to be invited as a guest?
  • What type of guests should be able to access files in SharePoint and OneDrive?
  • How should guests be offboarded?
  • How should you determine who has access to sensitive information in your environment?

Sponsored by:

Live Webinar: Active Directory Security: What Needs Immediate Priority!Live on Tuesday, October 12th at 1 PM ET

Attacks on Active Directory are at an all-time high. Companies that are not taking heed are being punished, both monetarily and with loss of production.

In this webinar, you will learn:

  • How to prioritize vulnerability management
  • What attackers are leveraging to breach organizations
  • Where Active Directory security needs immediate attention
  • Overall strategy to secure your environment and keep it secured

Sponsored by: