LAPs on Autopilot Hybrid Azure AD join devices.. Supported?
Question
Hi
I am currently deploying Autopilot using Hybrid Azure AD join.
As the device is domain joined but also hybrid Azure, can i use LAPs for Local admin management or is better to use the Azure Device administrator’s approach in Intune?
What we trying to provide is a mechanism for break glass account if an admin needs to get access to a machine.
Thanks
Answers ( 2 )
I think LAPs is a better option because you are in a hybrid Azure AD join scenario. Jeff’s method might not be suitable for domain-joined (+ Azure AD registered) devices.
Or else you can look into BeyondTrust kind of third-party solutions
Thanks Anoop.