Forum Discussion
Azure AD Joined device, without user is local administrator?
Hi, If I reset af Windows 10 device to factory settings, and then after reset logs in using my Office 365 account (With an Enterprise Mobility + Security Licecense added), I then become local adm...
Hi
The user who joins the device to AAD is an administrator by default. There is no setting to disable it.
The only way around it is to use Autopilot. That way you can configure if the user who joins the device becomes local admin or not.
Kind regards
Thijs
The user who joins the device to AAD is an administrator by default. There is no setting to disable it.
The only way around it is to use Autopilot. That way you can configure if the user who joins the device becomes local admin or not.
Kind regards
Thijs
- Hi.
Yes, I have been looking into the Autopilot option too. But as all devices are in use now, I dont have the Hardware ID's, and devices should not be formatted.
Currently I am testing using a Enrollment manager - so far working fine, by enrolling using that, and then "Change user". Other users are not Local administrators.
Is that an option on the long term?
I can see company portal is added on both accounts, and I can deploy software, as long as its on device level.- That's one way to do it.
But I would advise Autopilot, you can use it for existing devices tooHmm..... Might go with the Autoilot solution then.
Do I have to harvest the Hardware ID and so on? If thats the case, is it only possible to that directly on the device?
