Windows 10: How To Use Password Instead Of PIN

Password and PIN protection are essential security features that come with Windows 10. Unfortunately, changing from a PIN to a password or setting one up isn’t as straightforward as most users would like.

If you prefer no password, pin, or other login credentials to get to your desktop, please refer to Windows 10 Auto Login to see how you can do that.

1. Press the Windows button at the bottom of the screen

The first step is to click the start button at the bottom-left part of the screen.

You can either click the Start button or press the Windows key on your keyboard.

This step will open up the settings menu, where you can edit your security settings.

open settings app windows 10

A list of programs will appear on your left, with the Settings button at the bottom.

Click on Settings to access the menu containing your PC’s main settings for your System, Devices, Network & Internet, Personalization, and Account. 

2. Click on the Account Settings & select Sign-In Options

select account settings

A drop-down menu will appear once you’ve clicked on the Account Settings.

Click on the Sign-in Options button to access (and manage) the various sign-in options on your device. 

select sign in options

You’ll then head over to the Password menu and click on Add. A blue pop-up screen will appear, giving you access to two password reset boxes and a hint box.

You’ll then need to fill the upper box with the password of your choice. Windows will require you to confirm it. A task you’ll perform by filling in the second box. 

How to use the password for sign in instead of a pin in Windows 10.

In the third box, you must fill in a password hint. Choose a hint that’s easy to remember, as it’ll make the recovery process much easier if you forget it.

You’ll hit the Next button once you’ve filled all the boxes. Press the Finish button to complete the process. 

As you can see throughout this section, setting a password for the first time is fairly straightforward.

Remember to click on settings and then accounts to access the sign-in settings page. From there, you can set up a password. 

When Windows 10 can’t remove the PIN

Many users experience difficulties when it comes to removing PINs. On most occasions, when removing PIN protection, the Remove button is usually grey.

In other words, you can only change the PIN but not remove it completely.  If you’re among the affected users, the following steps will help you remove the PIN as your sign-in method. 

Go to the Settings Page & Click on Account

Click the Windows button at the bottom left part of your screen and select Settings. As in the previous section, you must navigate to Accounts and click Sign-in Options

Once on the Sign-in Options panel, scroll down and click on the Windows Hello PIN. You’ll then spot two buttons titled Change and Remove.

The Change button allows you to modify your password, while the Remove button will enable you to cancel the PIN setting altogether. 

However, you might find that the Remove button is unclickable in most cases, meaning you’ll need to remove the PIN settings using other means.  

Click on I Forgot My PIN

Beneath the Windows Hello PIN, you’ll spot the I forgot my PIN button that you should click on, as shown in the image below. 

select i forgot my pin my pin

Once you click, I forgot my PIN, a pop-up box confirming whether you’re sure the changes will appear. You’ll need to click on Continue at the bottom of the screen to proceed to the next step.  

Sign in to your account with your password

Windows will prompt you to sign in to your Microsoft account to verify you’re the real owner.

If you’re using the local account password, it’ll ask you to sign in to confirm your identity as the owner.

This step should be straightforward, especially since you’ll be keying in a familiar password.  

After the sign-in is complete, a PIN pop-up will appear. The pop-up allows you to set your preferred PIN.

However, in our case, we’ll use the pop-up to remove PIN protection. The trick, however, is to press the Cancel button, as shown below. 

re-enter pin

Clicking on Cancel will allow you to remove PIN protection as your preferred sign-in option.

When you return to the sign-in page, you’ll notice an Add button below the Windows Hello PIN option, as indicated below. 

select add new pin button

The presence of the Add button means you’ve successfully removed Windows Hello PIN as your default sign-in option. You can then follow the steps in the first section to set a password. 

PIN vs. Password: Which one should you use?

Both PIN and password have their pros and cons when it comes to account protection.

While a password can integrate characters, symbols, and numbers, it might also prove tedious to enter during start-up, especially if it’s complex. 

Similarly, while a PIN might be easy to enter, a very simplistic PIN might fail to provide the desired level of security.

Luckily, users can integrate numbers and alphabets in a PIN, thus providing convenience and security. 

Below is a brief comparison of PINs and passwords to help determine the most secure and effective of the two options. 

The uniqueness of different devices

Perhaps the best feature of the PIN is its exclusivity regarding devices. Your PIN can be used only on your PC and won’t be passed on to Microsoft’s servers.

That means that should your PC get into the wrong hands, the infiltrator or thief cannot access your Microsoft account, thus keeping your sensitive emails or cloud-stored items safe. 

The password lags behind the PIN when it comes to security.

While you might set up a complex password involving numbers, letters, and symbols, failure to secure it means someone who gets your log-ins will have full access to your Microsoft account.

Unlike PINs stored locally, Microsoft passwords are cloud-stored and used to access the entire account. 

Hardware backup

Microsoft’s Hello PIN is usually backed and supported by a Trusted Platform Module (TPM) chip. The TPM is an ultra-secure crypto-processor designed to perform cryptographic functions.

The chip comes with several physical security mechanisms that make it tamperproof. This feature means that malicious software won’t be able to tamper with the TPM’s security functions. 

Once generated, the user key material is made available only within the TPM of the specific device, thus protecting it from attackers looking to capture and use the key material.

And since Hello utilizes asymmetric key pairs, you won’t have your credentials stolen if your identity provider or frequently accessed websites are compromised.

The password doesn’t come with a hardware backup and won’t be specific to the device, meaning it’s a lot riskier if you want full-scale protection.

Expert hackers can tamper with the cloud-stored logins and access all your Microsoft account details. 

An extra layer of protection 

Although a PIN helps make your device and Microsoft account more secure, it still requires a password. That means that passwords are important when it comes to the provision of a much-needed layer of security. 

Ideally, Microsoft will only allow you to set a PIN once you’ve signed up with a password. You’ll still need an active password for a local connection to set up your preferred PIN.

That gives users the essential device-exclusive protection that ensures sensitive Microsoft account log-ins and details aren’t accessible even if the PIN is compromised. 

Access to other security features

Microsoft doesn’t usually advocate for using passwords as the primary sign-in option.

That’s because of the risk that hackers can access the user’s Microsoft account if successful. However, you’ll need a password to create a PIN. 

In the same way that a password is fundamental to PIN creation, so too is a PIN regarding Window’s additional security features.

If your device allows biometric sign-in (fingerprint, facial recognition, or iris), you’ll need a PIN as a backup.

That explains why Microsoft requires you to create a PIN before setting up your preferred biometric sign-in. 

Frequently asked questions

If you’re a Windows 10 user, you might still be curious about PINs, passwords, and other security measures. Let’s answer some of your questions!

Can a BitLocker perform the same function as TPM?  

If your laptop doesn’t have TPM, you can enhance its overall security by enabling the BitLocker and setting a failed sign-in limit.

Below are steps to follow when looking to configure BitLocker for a device that doesn’t come with TPM protection.

Search the Local Group Policy Editor 

The first step to activating BitLocker is keying in ‘Local Group Policy Editor’ at the bottom of the screen.

  1. Once launched, double-click on Computer Configuration to kickstart the policy editing process.
  2. From the Computer Configuration, click on Administrative Templates, then Windows Components.
  3. You’ll then need to click on the BitLocker Drive Encryption button before finalizing by pressing the Operating System Drives button.
  4. Then, click on the policy titled Require additional authentication at startup. 

Set your account lockout threshold

You must set a lockout threshold to enhance your device’s overall security. To do this:

  1. Go to the search button at the bottom of your screen and type control panel to quickly access control panel settings.
  2. Once on the control panel, click System and Security before double-clicking on the BitLocker Drive Encryption, where you’ll select the drive you want to protect.
  3. You’ll then need to click Set account lockout threshold. 

Enable the account lockout policy

To enable the account lockout policy:

  1. Go to the Local Group Policy Editor again and click on Computer Configuration, then Windows Settings.
  2. You’ll then need to double-click on Security Settings before clicking on Account Policies, followed by Account Lockout Policy. 
  3. Finally, you’ll need to click on the Account lockout threshold setting to set the allowable number of invalid login attempts.
  4. Click Ok to complete the policy setting. 

Will changing my account password log me out of other devices?

When a user sets up Windows Hello, the biometric gesture or PIN set is usually specific to the device used. That means you can set Hello PIN for your Microsoft account on several devices.

If the biometric or PIN is configured as part of Hello for Business, changing your account password won’t impact unlocking or signing in as it uses a certificate or key. 

But if Windows Hello for Business isn’t deployed, then changing the password will affect all devices, and you’ll need to provide the new password whenever you want to sign in to your other devices. 

Are the other sign-in options effective?

Windows provides users with multiple sign-in options for increased convenience. In addition to PINs and passwords, you can use Windows Hello Fingerprint and Windows Hello Face for biometric security.

However, to use Hello Fingerprint and Hello Face, you must set a PIN as an alternative sign-in option if the fingerprint scanner or webcam malfunctions. 

Other sign-in options include the Security Key and Picture Password. The security key option allows signing in through a Yubikey or a similar device.

While this option is relatively secure, you must purchase and keep the key to access your device.

Losing a Yubikey will require you to recover your account and buy another Yubikey after de-associating the lost key from your account. 

How to choose a password

Setting a password for any device is essential for security enhancement. But even more important than setting one is to choose an easy-to-remember but still complex password to keep malicious hackers at bay.  

Avoid simple & sentimental passwords

While it might be tempting to choose a simple password that’s easy to key in during every sign-in, doing so might make you more exposed and prone to security breaches.

Ideally, your password should be complex to ensure that hackers don’t have an easy time.

Avoid sentimental passwords involving birthdates, anniversaries, or achievements, as they might be easy for dedicated hackers to study and breach.

Use a blend of characters, symbols, and numbers

You’ll need a strong password if you use it as a sign-in method.

Remember, your password will be tied to your Microsoft account, meaning your files and details might be compromised should malicious hackers access it. 

Therefore, when setting your password, use a strong blend of symbols, numbers, and characters to protect your device and account. 

Change your password regularly

Although not mandatory, changing your password now and then is a great way to keep your device and Microsoft account well protected.

This tip specifically applies to people working in public spaces who have many sensitive files on their computers or feel their account is under constant threat. 

Changing the password makes hacking hard, increasing your overall security.

However, you’ll need to find reliable (and safe) ways to store your password, as a frequent change of passwords means you’re more likely to forget the new ones. 

It’s useful to set up a PIN

A PIN is the preferred sign-in option, providing an extra layer of security. That’s because you’ll need a password to set up a PIN.

Even better, the PIN will only apply to the specific device, thus leaving your Microsoft account safe even when your PC has been compromised.

However, setting a PIN doesn’t mean you should set a weak password. 

Choosing a strong password and PIN is a surefire way to keep your device and account safe.