Do Son 
In September 2025, the Microsoft 365 team unveiled a highly controversial roadmap feature. They named it Workplace Check-in. However, severe backlash delayed its initial release. Now, Microsoft has finally begun rolling out this capability. By default, this tool remains disabled. Enterprise IT administrators must actively choose to activate it. Once enabled, the system utilizes Wi-Fi connections to detect an employee’s physical presence in the office.
Is Workplace Check-in Tracking Users?
The check-in mechanism operates quite simply. Microsoft Teams analyzes the Wi-Fi hotspot data connected to an employee’s device. Subsequently, it matches this information against the corporate backend configuration. For instance, an employee might walk into Building C and connect to the local network. Teams instantly displays that individual as working from Building C. Conversely, the system will not mark employees as “in-office” when they connect from external locations. Consequently, managers can effortlessly verify office attendance.
Initially, critics argued this feature facilitated corporate surveillance. This fierce backlash prompted Microsoft to postpone the launch. Now, the tech giant is reintroducing the feature with a renewed emphasis on user choice. Employees supposedly retain the freedom to share their Wi-Fi data for this purpose. Therefore, Microsoft frames this as an empowering technological option.
However, corporate leadership can easily mandate compliance through non-technical pressures. Refusing to enable this feature could result in disciplinary meetings, poor performance reviews, or even termination. Under such coercive circumstances, true user choice vanishes. Ultimately, if administrators mandate the tool, employees must comply.
System-Level Permissions Required
Microsoft’s claim regarding user choice stems from essential system-level location permissions. On iOS devices, Teams will prompt the user for location access when an administrator activates the feature. If an employee denies this request, their office status remains hidden. Corporate policies cannot override these fundamental smartphone security settings.
Administrators have two configuration options for when users connect to their organization’s Wi-Fi to share presence data. First, they can deploy a notification setup. This alerts staff that the feature is active and allows immediate opt-out. Alternatively, they can utilize a mandatory request mode. Here, a persistent banner urges employees to share their location via Teams. While the second approach seems more aggressive, both methods yield similar outcomes.
Furthermore, Microsoft insists this tool does not create a comprehensive surveillance state. For example, it will not track an employee traversing different floors throughout the workday. Nevertheless, this capability will inevitably spark workforce protests. After all, it severely complicates the lives of employees attempting to work remotely unnoticed.
Support Our Threat Intelligence
If you find our CVE report and cybersecurity news helpful, consider supporting our work.
Buy Me a Coffee
PayPal
