Event banner

Windows Office Hours: June 15, 2023

Event Ended

Thursday, Jun 15, 2023, 08:00 AM PDT

In-Person

Event details

Get answers to your questions about adopting Windows 11 and managing the Windows devices used by remote, onsite, and hybrid workers across your organization. Get tips on keeping devices up to date ef...

Heather_Poulsen

Updated Jun 15, 2023

Office Hours

marycortez

Copper Contributor

Jun 15, 2023

Best way to implement local admin accounts on azure ad devices? This will be with business premium licenses. And how would it work?

JaySimmons

Microsoft

Jun 15, 2023

MaryAnn have you looked at the Accounts CSP? https://learn.microsoft.com/windows/client-management/mdm/accounts-csp There are other approaches but that is the one that I would focus on first.

marycortez
Copper Contributor
Jun 15, 2023
I have looked into it, but I wasn't sure if there would be complications from using that method. I'm pretty new to AD so I was more so curious on industry best practices.
- JaySimmons
  Microsoft
  Jun 15, 2023
  Accounts CSP is the primary method for AADJ-joined devices. I am not aware of any complications per se, other than the by-design fact that you need a Windows LAPS-like solution in order to actually set a password on such a local account before it can be enabled. I have also worked with some customers who prefer to "bake" their necessary local admin accounts (hopefully not more than one) into their base images.
  - marycortez
    Copper Contributor
    Jun 15, 2023
    Thank you for that information, I'll definitely start on my research!

Date and Time

Jun 15, 20238:00 AM - 9:00 AM PDT