I want this info on the SW side which is what is says in the GPO:
Network security: Allow PKU2U authentication requests to this computer to use online identities.
This policy will be turned off by default on domain joined machines. This would prevent online identities from authenticating to the domain joined machine.
So this policy is set to default in the environment but you don't tell me that info in the description so I have to research it and come to find out its set to disabled by default. No need to disable it but now I wasted 10 minutes.