SOTI Identity Login (Windows Modern)

The SOTI Identity Login Windows Modern profile configuration enables enterprises to set up device authentication through SOTI Identity users or local directory users.

Selecting the SOTI Identity Login configuration payload in a Windows Modern profile.

This Windows Modern profile payload simplifies authentication by leveraging SOTI Identity, eliminating the need for Entra ID services or local user accounts. It provides:

  • A customized login tile for SOTI Identity users

  • Offline login functionality with configurable frequency settings

  • Seamless password synchronization between SOTI Identity and local accounts

To enable and configure user authentication using SOTI Identity:

  1. Integrate your local directory service with SOTI Identity. See Integrating SOTI Identity.

  2. Configure the SOTI Identity Login Profile payload. See Authenticating Windows Modern Devices Using SOTI Identity.

User Management Behavior

A local user account is automatically created when a SOTI Identity user logs in for the first time on a Windows Modern device. These accounts follow a standard security framework to maintain controlled access:

  • Local user accounts are assigned Standard membership, preventing administrative privileges by default.

Note: Local accounts remain on the device even if the profile is revoked, ensuring user access continuity.

Password Synchronization

When users update their SOTI Identity passwords, the changes synchronize with the local account during the next online login. This eliminates manual password updates and reduces administrative overhead.

Offline Login

If enabled, users can authenticate without an internet connection based on a predefined offline frequency, ensuring uninterrupted access in unreliable network environments.