Forum Discussion
Solved
Autopatch service account as risky user?
Last week I received a notification of user risk from AAD Identity Protection.
It said that the three autopatch service accounts are at high user risk:
Is this a false positive?
Should I do something?
- Seems it's a known issue.
I updated the Autopatch related Named Location with an IP list the service team provide me.
Then the notification can be dismissed safely.
Since the new authentication using Enterprise Application is on the way, I think it's OK to do nothing.
3 Replies
- ChristineEaton
Microsoft
Hi Alber. If you haven't already done so, please could you raise a support ticket for investigation. You can use the following link for directions on opening a support ticket: https://learn.microsoft.com/en-gb/windows/deployment/windows-autopatch/operate/windows-autopatch-support-request. Thanks!- Thanks for reminding.
I have raised a support ticket MMD-255554-T0L2Q .- Seems it's a known issue.
I updated the Autopatch related Named Location with an IP list the service team provide me.
Then the notification can be dismissed safely.
Since the new authentication using Enterprise Application is on the way, I think it's OK to do nothing.
