Hello РустамЕрмуканбетов,
Thank you for posting on the Microsoft Community Forum.
Device Owners:
The Device Owners group is one of the default security groups in Active Directory for Windows Server. However, this group is not currently in use in Windows. Its purpose is not clearly defined, and changing its default configuration may affect future scenarios that depend on this group. Refer to this link: Active Directory security groups | Microsoft Learn
The device owner property shows which user the device has been assigned to. Hybrid Azure AD-joined Windows 10 or later devices don't have an owner. By default, Global Administrators and Device Owners in Azure AD are granted Local Administrator permissions. Azure AD Device Owner - Microsoft Q&A
Windows Manager\Windows Manager Group:
Window Manager groups are special identity groups in Windows. The Window Manager group is not a user account group, but rather a system-level group related to graphical user interface (GUI) functionality and window management in Windows.
- Window Manager groups are not managed directly through the Local Users and Groups tool.
- Members of this group include system-level processes responsible for working with windows, desktop assemblies, and other visual elements.
- Regular user accounts are usually not part of the window manager group; It is mainly used for system-level components.
If you remove the Window Manager\Window Manager Group from the Increase Plan Priority user permission, some applications and computers do not function properly. You can refer to the link: Increase scheduling priority - Windows Security | Microsoft Learn
Refer to this link for some explanations of user rights assignments: User Rights Assignment - Windows Security | Microsoft Learn
I hope you the information above is helpful.
If you have any questions or concerns, please do not hesitate to let us know.
Best Regards,
Daisy Zhou