This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 21%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETI%3C/text%3E%3C/svg%3E)
Hello there,
We have a policy for LAPS installation in clients' systems, I have two question that I don't know the reason.
would u plz guide me about the reasons?
After All, I figured out that if LAPS being installed in a system and the expiration time for example be " 40 days", during this period if someone who has access to reset local admin, reset the local admin, LAPS wouldn't update it until the expiration time passes.
Best Regards.
Please be informed, that LAPS client logs its events like this. By going them through, you should understand the problems.
Hi,
I found that it's normal, because the LAPS policy updates every 40days for each client by using GPO and if a helpdesk admin reset the password manually, it won't be update until the 40 days. Is it possible to keep the 40 days and force clients that by using the gpupdate the LAPS password again be set to admin?
When LAPS policies kicks in for the first time, the password should be generated, so 40 days is not the problem here.
I meant not the first time it kicks in.
After the Computer get the policy of LAPS and the Password of LAPS generated, if the local admin password changed manually, Shall we wait for 40 days to LAPS be regenerated?
@This is Parya yes probably you need to wait. With LAPS solution, you should not have any need to change password manually :)
