AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Custom work timer1/29/2024 Actions range from resetting the managed account to use a new secure password, logging off the account, or doing both and then powering down the device. Configure post authenticating actions – Define actions that a device takes when its local admin account password expires.Passwords are stored using strong encryption. Backup accounts and passwords – You can choose to have devices back up their account and password in either Azure Active Directory (Azure AD) in the cloud, or your on-premises Active Directory.You can also use the Intune admin center to manually rotate the password for a device as a device action. Rotate passwords – With policy you can have devices automatically rotate the local admin account passwords on a schedule.Set password requirements – Define password requirements including complexity and length for the local administrator account on a device.Intune support for Windows LAPS includes the following capabilities: Intune's use of the CSP replaces the use of Legacy Microsoft LAPS or other LAPS management solutions, with CSP based taking precedence over other LAPS management sources. Intune LAPS policy manages the settings available from the Windows LAPS CSP. Managing LAPS with Intune can also help improve security for remote help desk scenarios and recover devices that are otherwise inaccessible. Use of Intune LAPS policies helps you protect Windows devices from attacks that are aimed at exploiting local user accounts like pass-the-hash or lateral-traversal attacks. You can also view details about the managed local admin accounts in the Intune Admin center, and manually rotate their account passwords outside of a scheduled rotation. Schedule rotation of those account passwords to help keep them safe. ![]()
0 Comments
Read More
Leave a Reply. |