The future is passwordless. Microsoft has an ongoing commitment with other industry leaders to enable a world without passwords. Today, we are excited to announce an improved Windows passwordless experience to organizations starting with the September 2023 update for Windows 11, version 22H2. Passwords are inherently insecure, inconvenient, and a prime target for attacks. In 2022, Microsoft tracked 1,287 password attacks every second. In the last 12 months, we saw an average of more than 4,000 password attacks per second^[1]. Microsoft paved the way for Microsoft Accounts (MSA) in the consumer space with fully passwordless accounts so you no longer need a password in the MSA identity directory. We are now laying the groundwork for more passwordless phish-resistant credentials for commercial organizations. Phish-resistant credentials like Windows Hello for Business or FIDO2 security keys are both passwordless solutions and can protect user identities by removing the need to use passwords from day one. Commercial organizations can now set the EnablePasswordlessExperience MDM policy from Intune or another MDM to enable a fully passwordless user experience on Microsoft Entra ID joined machines. Once the policy is set, it removes passwords from the user experience, both for device sign-in as well as in-session auth scenarios like password managers in a web browser, “Run as” admin scenarios, and User Account Control (UAC). Users will need to use Windows Hello for authentication in place of a password. If the user fails to sign in, recovery mechanisms such as PIN reset or Web sign-in can be used to help the user recover their credentials without IT helpdesk engagement.