Forum Discussion
LAPS Creation using Intune
Hi All I am trying to get Intune to create a Local Admin Account and I am using the method of adding OMA-URI Settings but for some reason the account is created but it's not adding to the a...
Hi, it should be enough to add another configuration like the one below:
Name: Add user to Local administrator group
OMA-URI: ./Device/Vendor/MSFT/Accounts/Users/apexadmin/LocalUserGroup
Data type: Integer
Value: 2
Name: Add user to Local administrator group
OMA-URI: ./Device/Vendor/MSFT/Accounts/Users/apexadmin/LocalUserGroup
Data type: Integer
Value: 2
yes but it doesn't.
It works on 1-2 machines but the rest just fails to add local admin group
It works on 1-2 machines but the rest just fails to add local admin group
- If you create a script in powershell with the command below and deploy it via intune?
Add-LocalGroupMember -Group Administrators -Member apexadmin
Otherwise, if you have the licenses, you could use account-protection-policies
https://learn.microsoft.com/en-us/mem/intune/protect/endpoint-security-account-protection-policy- We can't run Remediation because we are using business premium
I copied this into notepad and saved it as create-localadmin.ps1
net user apexadmin password123 /add
Add-LocalGroupMember -Group Administrators -Member apexadmin
However the script doesn't deploy to devices
It says 0 devices deployed- Are other policies being deployed on these devices?