Forum Discussion
Remove "Administrator" rights from devices.
We have a requirement to remove "Administrator" rights from our "Hybrid AD joined" devices. These devices are enrolled with "Administrator" user account type (Autopilot Profile). Is there any way...
Shouldn't devices be enrolled with the user account (as "user") ?
I have once seen devices that haven been enrolled with the same (service) account in the start, and this creates issues for the users, because they cannot use the Company Portal if the user is not the same in Intune + on device.
We are pushing a local administrator using Azure, and devices are constantly cleaned up using step 3 as a script (https://call4cloud.nl/2021/04/dude-wheres-my-admin/) because of different languages on the devices.
By the way, if you have an international environment: a little highlight https://social.technet.microsoft.com/wiki/contents/articles/13813.localized-names-for-administrator-account-in-windows.aspx
I have once seen devices that haven been enrolled with the same (service) account in the start, and this creates issues for the users, because they cannot use the Company Portal if the user is not the same in Intune + on device.
We are pushing a local administrator using Azure, and devices are constantly cleaned up using step 3 as a script (https://call4cloud.nl/2021/04/dude-wheres-my-admin/) because of different languages on the devices.
By the way, if you have an international environment: a little highlight https://social.technet.microsoft.com/wiki/contents/articles/13813.localized-names-for-administrator-account-in-windows.aspx
- I guess someone forgot to change it to User :).. Thanx for mentioning the blog 😛 Looking at it.. I realise I do need to update that powershell script 🙂
