Managing local admin accounts using intune has a lot of quirks my tele colleague rudy ooms has already written extensively about this he also wrote a powershell solution to rotate a specific local admin rsquo s password and had the genius idea of using proactive remediations a mem feature to display passwords to admins integrated free in the intune console.

The intune lightweight laps leanlaps solution mitigates the risk of lateral escalation that results when admins use the same administrative local account and password combination on all windows 10 computers.

Microsoft q a is the best place to get answers to all your technical questions on microsoft products and services community forum.

The good old group policy ldquo configuration policies administrative templates system user profiles delete user profiles older than a specified number of days on system restart rdquo isn rsquo t part of intune yet if you use shared devices in your environment you can use below script to set the number of days after which a user profile is cleaned up on windows hellip.