Forum Discussion
LAPS Creation using Intune
Hi All I am trying to get Intune to create a Local Admin Account and I am using the method of adding OMA-URI Settings but for some reason the account is created but it's not adding to the a...
yes but it doesn't.
It works on 1-2 machines but the rest just fails to add local admin group
It works on 1-2 machines but the rest just fails to add local admin group
If you create a script in powershell with the command below and deploy it via intune?
Add-LocalGroupMember -Group Administrators -Member apexadmin
Otherwise, if you have the licenses, you could use account-protection-policies
https://learn.microsoft.com/en-us/mem/intune/protect/endpoint-security-account-protection-policy
Add-LocalGroupMember -Group Administrators -Member apexadmin
Otherwise, if you have the licenses, you could use account-protection-policies
https://learn.microsoft.com/en-us/mem/intune/protect/endpoint-security-account-protection-policy
- We can't run Remediation because we are using business premium
I copied this into notepad and saved it as create-localadmin.ps1
net user apexadmin password123 /add
Add-LocalGroupMember -Group Administrators -Member apexadmin
However the script doesn't deploy to devices
It says 0 devices deployed- Are other policies being deployed on these devices?
- Sorry it looks like the policies do go down but it shows failed.
It can add the apexadmin as a user but it fails to add it into the local admin group.
I wonder if it's because the administrator group has been disabled.