cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Windows LAPS feedback

Ideas (0)

Label
  • All labels
View Filters
Sign in to Join this Community

Passphrase Support

Status: Working on it
Submitted on ‎May 09 2023 12:08 AM Submitted by on ‎May 09 2023 12:08 AM 9 Comments (9 New)
Please add support for passphrases on LAPS where we can use four words dash (-) separated. It makes supporting a device remotely way easier since the password cannot be copied and pasted over remote sessions on most cases. There is too much ambiguity on charactes like “lower case L” “capital case i” and “pipe” and others. Thanks ... View more

Capability to Create local user within LAPS policy

Status: Working on it
Submitted on ‎May 03 2023 11:50 PM Submitted by on ‎May 03 2023 11:50 PM 6 Comments (6 New)
Currently LAPS by default act on built-in local administrator user. If you want to have a new one you have to crate using different method. I think the possibility to specify a custom administrator account and have Intune create it will be very helpfull. ... View more

Prohibit certain characters in passwords

Status: Working on it
Submitted on ‎May 04 2023 10:35 AM Submitted by on ‎May 04 2023 10:35 AM 13 Comments (13 New)
Create an opt-in configuration option that tells the LAPS service to not use certain characters in LAPS-generated passwords, such as o, O, 0, l, 1, etc. ... View more
0 Upvotes
Add upvote

Revice Password Last Set logic to check local PasswordLastSet and msLAPS-PasswordExpirationTime

Status: Working on it
Submitted on ‎Nov 10 2023 01:02 PM Submitted by on ‎Nov 10 2023 01:02 PM 8 Comments (8 New)
Some of our servers are non persistent and are created from a template each night. If the Password needs updating logic checked the local admin account's PasswordLastSet and AD msLAPS-PasswordExpirationTime, LAPS would work perfectly for us.  The password would update and stay in sync with the Win LAPS password. Yes, I know I could disable the local admin account through policy and choose not to use LAPS on the non-persistent servers, or add a script that clears the password last change date in AD on startup.   I would prefer not to have to keep separate GPOs to resolve this issue or custom hacks to resolve something that could just be built in. It could even be an optional setting in the LAPS GPO. Example: Check local admin account last password set: True.             ... View more

Idea Statuses


  • New Idea

  • under Review

  • Accepted

  • Rolled out

  • More info required

  • Not at this time
Announcements
Connect. Collaborate. Share. Learn from experts.
Idea Statuses
Top Contributors
View All