Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Monday, April 13, 2020 5:58 PM
Hi,
Given laptop to users without creating local user name and make the local user name as part of administrator group. We followed Windows Autopilot and did not think of local user name.
CoManagement enabled in SCCM to integrate with Intune
1. Is there a Intune Policy to create a local user name and set password
2. How to make the local user name as member of administrator group
Regards, Boopathi
All replies (3)
Tuesday, April 14, 2020 4:26 AM ✅Answered
Hi Boopathi,
We can create Intune Device Configuration Profile to accomplish this. The detailed steps are as below:
1. Go to Intune Portal, Open “Device Configuration’->Profiles, Create profile.
Platform : Windows 10 and later.
Profile: Custom
2. Insert name, Description. Configure the settings, Click Add under OMA-URI settings and create 3 entries
Create local user
Name: Name
OMA-URI: ./Device/Vendor/MSFT/Accounts/Users/<your local account name>
Data Type: String
Value: <your local account name>
Add local user into administrators user group
Name: UserGroup
OMA-URI: ./Device/Vendor/MSFT/Accounts/Users/<your local account name>/LocalUserGroup
Data Type: Integer
Value: 2
Set local user password
Name: UserGroup
OMA-URI: ./Device/Vendor/MSFT/Accounts/Users/<your local account name>/Password
Data Type: String
Value: <your local account password>
3. Click Assignments to assign this configuration profile to the related devices group.
Hope it can help.
Best regards.
Crystal
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Monday, April 13, 2020 6:44 PM
No, there is nothing built in for this. A simple PowerShell running net user add and net localgroup will do this for you though. You can push this out with either ConfigMgr or Intune.
Jason | https://home.configmgrftw.com | @jasonsandys
Thursday, May 14, 2020 8:17 AM
Hi Boopathi, Thanks for marking our reply as answer. Here, please let ma write a summary of our issue: Issue Definition:
Is there a Intune Policy to create a local user name and set password? How to make the local user name as member of administrator group Resolution:
We can create Intune Device Configuration Profile to accomplish this. The detailed steps are as below:
1. Go to Intune Portal, Open “Device Configuration’->Profiles, Create profile.
Platform : Windows 10 and later.
Profile: Custom
2. Insert name, Description. Configure the settings, Click Add under OMA-URI settings and create 3 entries
Create local user
Name: Name
OMA-URI: ./Device/Vendor/MSFT/Accounts/Users/<your local account name>
Data Type: String
Value: <your local account name>
Add local user into administrators user group
Name: UserGroup
OMA-URI: ./Device/Vendor/MSFT/Accounts/Users/<your local account name>/LocalUserGroup
Data Type: Integer
Value: 2
Set local user password
Name: UserGroup
OMA-URI: ./Device/Vendor/MSFT/Accounts/Users/<your local account name>/Password
Data Type: String
Value: <your local account password>
3. Click Assignments to assign this configuration profile to the related devices group.
Thanks for your time and have a nice day!
Best regards.
Crystal
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].