I'm having a bit of a security issue with my Windows 11 machines. Every time we reboot them, the last signed-in username pops up, which feels like a vulnerability. We've tried to fix this by enabling some security policies, specifically: 1) Interactive logon: Don't display last signed-in user and 2) Interactive logon: Don't display username at sign-in. But despite these changes, the last username still shows up, which is quite concerning. Any ideas on how to actually resolve this?
5 Answers
You might want to check if the security policies you've set are actually being enforced. Sometimes, it can be tricky actually applying these settings. Don't just trust that they're active; audit those endpoints to validate that the policies are being applied correctly.
Keep in mind that if you're using Windows Hello for Business, that might automatically require users to enter their usernames before selecting other sign-in options, which can negate some of the policies you've set.
Hiding the last signed-in username is part of security best practices, and removing this option can help improve security by not displaying user info, especially after a reboot.
How exactly are you enabling those policies? If you're using a tool like Policy Pak to manage these settings, it could be affecting how they're applied.
It sounds like you're dealing with a real issue there. The last username being shown can definitely be a vulnerability, especially if accounts aren't password protected. It’s important that usernames remain hidden unless necessary.
I've checked, and it seems like the settings are applied correctly within secpol, but I'm not sure if there's another setting I need to adjust.