Azure LAPS replaces on-prem LAPS, you don't need to install any clients but update your OS and LAPS will be there built-in. Then you need just to enable AzureAD to use local admin password feature and do new policy under Endpoint Security for LAPS behavior.
Configuring Local Group Policies using Intune
I have a pure cloud Azure AD and some devices are enrolled to Intune using AutoPilot, I was trying to configure the Password Policies in GPO using Intune. The policies that I need to configure using Intune such as (Enforce Password Policy, Maximum Password Age, Minimum Password Age, Maximum Password Length ... etc) I was not able to resolve what I need using the ready administrative templates in Configuration Profile.
After all the searches that I went through, I think I have to do this using ADMX and editing the needed Registry Keys. I don't have much knowledge of ADMX do I need to have LAPS tool installed on devices first? and I don't really know where to edit the needed registry keys, I tried this: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd] I added AdmPwd manually.
Any positive ideas how to edit these local group policies using Intune?
Sign in to comment
Sort by: Most helpful
Thank you for posting in Microsoft Q&A forum.
You can use LASP or CSP to deploy password policy to clients via Intune. For more details, please refer to:
Using Microsoft Intune for Local Administrator Password Management
Deploy OMA-URIs to target a CSP through Intune, and a comparison to on-premises
Thanks for your time. Have a nice day!
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Hope everything goes well. Do you need any further assistance about this issue? If yes, please feel free to let us know, we will do our best to help you.
If the response is helpful, it's appreciated that you could click "Accept Answer" and upvote it, this will help other users to search for useful information more quickly.
Thanks for your time.