If you have devices that is connected to an on-premise, you would certainly configure the Local Administrator Password Solution (LAPS), which allows unique password for each local administrator across the enterprise network.
Unfortunately this method only works when you have on-premise devices, but what about Azure AD Joined machines? – A short answer is “no”.
LAPS takes advantage of 2 attributes in the local Active Directory, these attributes are not available in Azure AD.
Therefor I have created a small application that mimic the same behavior for Azure AD devices, which I call “iLAPS” for Intune Local Administrator Password Solution.
