LAPs on Autopilot Hybrid Azure AD join devices.. Supported?



I am currently deploying Autopilot using Hybrid Azure AD join.

As the device is domain joined but also hybrid Azure, can i use LAPs for Local admin management or is better to use the Azure Device administrator’s approach in Intune?

Managing Local Administrators with Azure AD and Intune


What we trying to provide is a mechanism for break glass account if an admin needs to get access to a machine.


Answers ( 2 )

  1. I think LAPs is a better option because you are in a hybrid Azure AD join scenario. Jeff’s method might not be suitable for domain-joined (+ Azure AD registered) devices.

    Or else you can look into BeyondTrust kind of third-party solutions

    Best answer

Leave an answer

Sorry, you do not have permission to answer to this question .