When SSO is enabled and the
MakeGPCPDefault
setting
is enabled, users can use any sign-in options such as a third-party
credential provider, smart card, Windows Hello PIN, Windows Hello password,
or Windows Fingerprint to sign in to their Windows device. Regardless of
the sign-in option selected, the GlobalProtect credential provider
will be used as the default sign-in option at the next Windows login.