You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
macOS LAPS runs successfully for the first time and changes my local admin password and expiration time but when looking up the Mac in LAPS UI on Windows the password is blank. Expiration time correctly matches the output of the macoslaps command (ms-Mcs-AdmPwdExpirationTime) but ms-Mcs-AdmPwd is blank.
This is a copy of issue #33 but the user never posted a fix and I'm hoping someone can point me in the right direction. I do have limited control over my AD environment though.
The text was updated successfully, but these errors were encountered:
So, the issue was the AD admin account I use (not domain admin) did not have permission to view the ms-Mcs-AdmPwd attribute in AD because it was not the AD service account that was used to join the Mac to the domain. The fix was to join the Mac to the domain using my AD admin account. I imagine it could also be fixed by changing the security permissions on the computer object.
Amazing software Joshua, thank you for creating and supporting it.
macOS LAPS runs successfully for the first time and changes my local admin password and expiration time but when looking up the Mac in LAPS UI on Windows the password is blank. Expiration time correctly matches the output of the macoslaps command (ms-Mcs-AdmPwdExpirationTime) but ms-Mcs-AdmPwd is blank.
This is a copy of issue #33 but the user never posted a fix and I'm hoping someone can point me in the right direction. I do have limited control over my AD environment though.
The text was updated successfully, but these errors were encountered: