AAD joined devices (windows PC) users gets admin access

Hwan 0 Reputation points
2023-08-01T18:16:45.9666667+00:00

Hello,

I have a question regarding AAD joined devices, when user login into the device they get admin access, I would like to change to a standard account. when I see the devices they have a "cloud administrator" role. I think this might cause the issue. I tried to fix the issue but could not find the answer. by the way, my company does not have Intune license and AAD is also a free account.

could you advise me?

Thank you.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,698 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Vasil Michev 91,126 Reputation points MVP
    2023-08-02T06:20:52.0833333+00:00

    This is the default behavior, the options to work around it are explained here: https://learn.microsoft.com/en-us/azure/active-directory/devices/assign-local-admin

    Do note that without Intune license, your options will be limited.

    0 comments No comments