Cyber attacks have become part of everyday life. It is important to protect each entry point and local administrator accounts. Every Windows computer has a built-in local administrator account that cannot be deleted and has all rights over the local system. Securing local administrator is very important in securing the entire organization. Windows LAPS allows us to rotate local administrator accounts according to the configured policies and store local administrator passwords directly to Microsoft Entra ID or to on-premises active directory.

In the session we will go through LIVE DEMO and look how to enable and manage Windows LAPS in Microsoft Entra ID (Microsoft announce the general availability in October 2023!).

LIVE DEMO will cover:

• Turning on Windows LAPS using a tenant-wide policy.
• Configuring client-side policies via Microsoft Intune portal for local administrator password management to set account name, password age, length, complexity, manual password reset and so on.
• Configuring Windows LAPS Group Policy Object (GPO) for Microsoft Entra hybrid joined devices.
• Recovering stored passwords via Microsoft Entra/Microsoft Intune portal.
• Viewing audit logs via Microsoft Entra portal.

Part of this session will be also covering implementation of (NEW) Windows LAPS to on-premises active directory environment.