Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Wednesday, June 20, 2018 12:14 PM
Hi,
Can someone help me to redirect to get documentation for LAPS solution for Azure VMs?
I have couple of windows servers 2016 which needs to be hardened and there is an requirement based on PCI assessment that all servers must have "Ensure LAPS AdmPwd GPO Extension / CSE is installed (MS only)" and All Local Administrator password must be managed using LAPS solution.
I am aware that for On premise servers this worked for me but I have now all servers in Azure cloud with only connected to AzureAD ( no on prem AD).
Any help highly appreciate
Regards
DR
All replies (4)
Thursday, June 21, 2018 1:06 AM | 1 vote
I believe this is the documentation you are looking for:
/en-us/azure/active-directory-domain-services/active-directory-ds-admin-guide-configure-secure-ldap
Thursday, June 21, 2018 9:02 AM
Thanks, I am looking for documentation for
Local Administrator Password Solution (LAPS) which can be used for Azure VM
Thursday, June 21, 2018 9:45 PM
Ah sorry about that! Must have been a long day and I misread :)
I have done some research on this however it does not appear that LAPS is supported when using an Azure Active Directory. However there is a feature suggestion for it on Uservoice:
You might be able to get this to work if you have an on premise AD that is synced with your AAD. That way you could manage that feature from the on prem AD but also have the cloud users included. I am not seeing anyone that has tried this though so it would require some testing to 100% confirm if possible.
Friday, June 22, 2018 4:03 PM | 1 vote
Thank you! Indeed I also saw that it is still under suggestion.
For my previous organisation ,we successfully used LAPS for on premise servers.
Let me wait for MS to come up with new solution or include LAPS for Azure VMS.
Thanks again .. Have great weekend ahead. :)