MicrosoftJaySimmons Thanks for the details. We used the default Administrator account in our deployment - is it possible to have the new LAPS take over this? Or do you need a separate account? (I saw some tweets regarding conflicts when trying to manage the same account with both LAPS versions). -edit- I saw your post right above this one detailing this information after I initially posted.
There's also the other aspect of requiring LoS to a DC to obtain any new GPO's to "turn off" the legacy LAPS. In our case, we went to hybrid pre-covid and when everyone went home, most users don't require VPN to do their jobs so they don't bother connecting. This means the only point of control left is Intune. Will there be the ability to have new LAPS supercede the old one and even force the deactivation of it? Or will this require us to push out a manual Uninstall of the LAPS .MSI and manually change the regkeys set by the LAPS GPO?
