This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 47%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Hi,
From Intune > Devices > Device configuration profiles, I set up a configuration profile with Settings catalog > Administrative Templates > Windows Components > Windows Logon options > Display information about previous logons during user logon.
I set up this configuration profile on an AADJ laptop. The profile is successfully applied to the laptop. However, I get this message at logon:
"Security policies on this computer are set to show information about the last interactive sign-in, but Windows couldn't retrieve that information. Contact your network administrator for help."
The documentation (https://video2.skills-academy.com/en-us/windows/client-management/mdm/policy-csp-admx-winlogon?WT.mc_id=Portal-fx#admx-winlogon-displaylastlogoninfodescription "DisplayLastLogonInfoDescription") only writes about Windows Server, so I don't have much information.
Can you tell me if this option is possible in AADJ devices, and if not, is there any alternative?
Thank you.
Hi
As an alternative, you can consider using other methods to track and monitor user logons on AADJ devices. Some possibilities include:
Azure AD Sign-in logs: Review the Azure AD Sign-in logs to get information about user sign-ins and related details.
Security Information and Event Management (SIEM) solutions: Integrate your AADJ devices with a SIEM solution that can collect and analyze log data to provide insights into user logons and activities.
Endpoint security solutions: Explore endpoint security solutions that offer logging and reporting capabilities, which can help track user logon events.
@Sage Mirror Thanks for posting in our Q&A.
Based on my understanding, this option is not supported in AADJ devices.
For this issue, did you consider using Graph Api to get the target device's last signed-in user? We can see more details in the following links:
I have done the test in my lab.
Hope it will give you some ideas.
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
@Sage Mirror Is there any other assistance that we can provide? If you have any questions or concerns on the recent information I've provided you, please don't hesitate to let me know.