Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more here.

Anonymous

My feedback

  1. 505 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    63 comments  ·  Azure Active Directory » Azure AD Join  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Anonymous commented  · 

    Our devices in Microsoft Security Center show as unsecure because of this not being configured even in Azure AD joined devices - it checks for a registry key that only works with LAPS. Would be nice if LAPS was configured so that we wouldn't have to ignore this setting on several hundred intune devices

    Remediation options
    Option 1 - Set the following Group Policy:
    Computer Configuration\Policies\Administrative Templates\LAPS\Enable Local Admin Password Management
    To the following value: Enable

    Option 2 - Set the following registry value:
    HKLM\SOFTWARE\Policies\Microsoft Services\AdmPwd\AdmPwdEnabled
    To the following REG_DWORD value: 1

    https://securitycenter.windows.com/security-recommendations/sca-_-scid-84?search=scid-84

    Anonymous supported this idea  · 

Feedback and Knowledge Base