I also have the same problem
Security Recommendations for LAPS are outdated
These recommendations in the Microsoft Secure Score seems to be ignoring the new Windows LAPS and looking at the old LAPS. When we changed over to the Windows LAPS, these recommendations started getting flagged. I thought Microsoft would eventually change them over, but they haven't yet.
Enable Local Admin password management
Remediation -- pointing to the old GPO settings....
Option 1 - Set the following Group Policy:
Computer Configuration\Policies\Administrative Templates\LAPS\Enable Local Admin Password Management
To the following value: Enable
Option 2 - Set the following registry value:
HKLM\SOFTWARE\Policies\Microsoft Services\AdmPwd\AdmPwdEnabled
To the following REG_DWORD value: 1
These appear to be the OLD GPO settings, not the new Windows LAPS.
I have Windows LAPS working and my Secure Score is still being flagged for this recommendation.
Protect and manage local admin passwords with Microsoft LAPS
This recommendation directs you to download the old LAPS client.
Microsoft Security | Microsoft Defender | Microsoft Defender for Identity
Windows for business | Windows Server | User experience | Other
Windows for business | Windows Client for IT Pros | User experience | Other
4 answers
Sort by: Most helpful
-
-
Thomas Starkey 0 Reputation points
2024-05-10T12:25:02.1766667+00:00 Same issue here. Anyone got any update on bypassing this?
-
Michele Ariis 2,040 Reputation points MVP
2024-10-01T10:02:29.06+00:00 any news on this issue?
-
Dimitris Komodromos 46 Reputation points
2024-11-13T14:16:07.0633333+00:00 Same issue here . Microsoft should update defender to check also for windows LAPS