Forum Discussion
LAPS Rotate pass on Intune
Hello,
can you explain how this possibility works ?
"OMA-URI setting to Rotate Local Admin Password
Another method for rotating the local admin password is by using the OMA-URI setting “Actions/ResetPassword.” This approach allows you to immediately change the password of the managed local admin account without having to wait for the “Password age days” value to expire, providing."
- Where should I insert this line ?
- at what time it is triggered ?
- can i enable and disable at any time ?
I want every hour or every 2 hours the chosen laptop group, should receive the new rotated password.
Thanks a lot
3 Replies
- Hi,
You will find most of the information in this article:
https://learn.microsoft.com/en-us/mem/intune/protect/windows-laps-policy
You can create different policies if you need different settings for different groups.
Kind regards
Tom Wechsler- None of this exists in this link.
I want to have the automatic ability to have the password rotated every 2 hours or every hour and not minimum 7 days as per the policy for Azure AD.
is this possible? thanksHi you can use this CSP to rotate the password immediately. See here: laps-csp : "This action invokes an immediate reset of the local administrator account password, ignoring the normal constraints such as PasswordLengthDays, etc." You can make a Custom Windows Configuration (see attached screenshot). You can assign this to a device but it is not really feasible to schedule this every two hours. I think this is more intended for a quick action in certain cases and one time rotate the LAPS password directly on a specific device.
If you really like to rotate automatically every 2 hours (not sure why you are trying to achieve this) you could create a Powershell script with the reset-lapspassword cmdlet: https://learn.microsoft.com/en-us/powershell/module/laps/reset-lapspassword?view=windowsserver2022-ps You could create a Win32 app for example to create a schedule task on devices to run this command (script) every 2 hours.
