Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

MD 102 > Windows Local Administrator Password Solution (Windows LAPS) > Flashcards

Windows Local Administrator Password Solution (Windows LAPS) Flashcards

1
Q

Can Windows LAPS create local admin accounts based on the administrator account name that’s configured using LAPS policy?

A

No
Windows LAPS can only manage accounts that already exist on the device.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the 2 licensing requirements ?

A
  • Intune subscription
    Microsoft Entra ID : Free version minimum
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which 2 types of directories can LAPS configure?

A
  • Microsoft Entra ID (cloud)
  • On-premises Active Directory
    LAPS on Windows devices can be configured to use one directory type or the other, but not both.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the supported join types?

A
  • Microsoft Entra joined or Microsoft Entra hybrid joined devices only. Microsoft Entra registered devices and workgroup joined devices aren’t supported.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Before creating a LAPS policy in Intune, what do you do?

A

Ensure that you have enabled LAPS in Microsoft Entra

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How to enable LAPS in MS Entra?

A

Step 1 : Sign in to the Microsoft Entra admin center as at least a Cloud Device Administrator.

Step 2 : Browse to Entra ID > Devices > Overview > Device settings

Step 3 : Select Yes for the Enable Local Administrator Password Solution (LAPS) setting, then select Save.

Configure a client-side policy and set the BackUpDirectory to be Microsoft Entra ID

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Describe the 7 steps to create a LAPS policy

A

Step 1 : Sign in to the Microsoft Intune admin center and go to Endpoint security > Account protection, and then select Create Policy.

Step 2 : Set the Platform to Windows 10 and later, Profile to Local admin password solution (Windows LAPS), and then select Create.

Step 3 : On Basics, enter name+description

Step 4 : On Configuration settings, Configure a choice for Backup Directory to define the type of Directory to use to back up the local admin account. You can also choose not to back up an account and password. The type of Directory also determines which additional settings are available in this policy.

Step 5 : review and configure the available settings: pwd lenght post authentication actions, post authentication delay

Step 6 : Set the Scope tags

Step 7 : Assignments, select the groups to receive this policy. MS recommends assigning LAPS policy to device groups

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

MD 102 (30 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions