270 questions
I also have the same problem
Security Recommendations for LAPS are outdated
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 66%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
ADM-Griffin2, Jay
151
Reputation points
These recommendations in the Microsoft Secure Score seems to be ignoring the new Windows LAPS and looking at the old LAPS. When we changed over to the Windows LAPS, these recommendations started getting flagged. I thought Microsoft would eventually change them over, but they haven't yet.
Enable Local Admin password management
Remediation -- pointing to the old GPO settings....
Option 1 - Set the following Group Policy:
Computer Configuration\Policies\Administrative Templates\LAPS\Enable Local Admin Password Management
To the following value: Enable
Option 2 - Set the following registry value:
HKLM\SOFTWARE\Policies\Microsoft Services\AdmPwd\AdmPwdEnabled
To the following REG_DWORD value: 1
These appear to be the OLD GPO settings, not the new Windows LAPS.
I have Windows LAPS working and my Secure Score is still being flagged for this recommendation.
Protect and manage local admin passwords with Microsoft LAPS
This recommendation directs you to download the old LAPS client.
Microsoft Security | Microsoft Defender | Microsoft Defender for Identity
Windows for business | Windows Server | User experience | Other
20,222 questions
Windows for business | Windows Client for IT Pros | User experience | Other
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 24%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESC%3C/text%3E%3C/svg%3E)
SCHRAUF Christian 5 Reputation points2023-07-28T11:36:27.6866667+00:00 Same issue here
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(140.8, 56.00000000000001%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EH%3C/text%3E%3C/svg%3E)
House 15 Reputation points2023-11-01T14:47:30.21+00:00 Same issue here as well
-
Trond Kristiansen 0 Reputation points2023-11-30T09:18:31.0266667+00:00 Same issue here as well
-
Petar Titev 0 Reputation points2024-03-28T09:08:55.1866667+00:00 The same problem in Secure Score about LAPS
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 68%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAA%3C/text%3E%3C/svg%3E)
Alex Appleton 0 Reputation points2024-04-03T15:54:48.75+00:00 Same issue here
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 53%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Sebastian Stüpp | Workstation & Cloud Admin 0 Reputation points2024-04-09T15:29:17.9933333+00:00 Same issue.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 23%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDW%3C/text%3E%3C/svg%3E)
Daniel Wilkins 0 Reputation points2024-06-28T10:16:09.2933333+00:00 I've just implemented Windows LAPS this week, and uninstalled the old Microsoft LAPS software (that we'd installed via an .msi file). I noticed today my secure score has dropped, and have just found this post. Come on Microsoft, judging by the date of the original post, this has been an issue for a year! I've used the 'Report inaccuracy' feature under the security recommendation to flag this up to Microsoft. Hopefully it'll get read and actioned.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 9%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESD%3C/text%3E%3C/svg%3E)
Stijn D'haese 0 Reputation points2025-03-14T09:28:17.5366667+00:00 We also have this issue, but I don't see any button where I could flag it as inaccurate. Has anybody opened a ticket at Microsoft?
Sign in to comment
4 answers
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 25%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
Michele Ariis 2,040 Reputation points MVP2023-07-11T12:15:21.42+00:00 -
ADM-Griffin2, Jay 151 Reputation points
2024-03-28T13:19:11.5266667+00:00 And it has only been 9 months. You would think they could change it by now. I wish MS had a better way to report this stuff. There is consistent issues with recommendations on the Secure Score and I don't want to spend 8 hours opening a case through my CSP and involving their time to escalate to MS. Then MS support sits on it for 3 weeks. Just a ridiculous process.
Sign in to comment -
-
Thomas Starkey 0 Reputation points2024-05-10T12:25:02.1766667+00:00 Same issue here. Anyone got any update on bypassing this?
-
Michele Ariis 2,040 Reputation points MVP
2024-10-01T10:02:29.06+00:00 any news on this issue?
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 20%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDK%3C/text%3E%3C/svg%3E)
Dimitris Komodromos 46 Reputation points2024-11-13T14:16:07.0633333+00:00 Same issue here . Microsoft should update defender to check also for windows LAPS