{"id":7375,"date":"2023-10-15T21:27:52","date_gmt":"2023-10-15T21:27:52","guid":{"rendered":"https:\/\/pariswells.com\/blog\/?p=7375"},"modified":"2023-11-09T23:18:45","modified_gmt":"2023-11-09T23:18:45","slug":"proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices","status":"publish","type":"post","link":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices","title":{"rendered":"Proactive Remediation to Disable all Local Admins on a PC that&#8217;s not the LAPS user for Azure AD devices"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">See Detection here<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/pariswells.com\/blog\/research\/powershell-script-to-get-all-active-local-administrators-on-the-pc\/\">https:\/\/pariswells.com\/blog\/research\/powershell-script-to-get-all-active-local-administrators-on-the-pc\/<\/a><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code class=\"\"># get the list of user names that are member of the Administrators group\n# we can't use Get-LocalGroupMember due to bug https:\/\/github.com\/PowerShell\/PowerShell\/issues\/2996\n# remove empty and non usable lines of the output\n\n$localadminallow = \"localadmin\"\n\n#get Local Admins\n\n$adminlist = (net localgroup Administrators) | Where-Object { $_ -match '\\S' } | Select-Object -Skip 4 | Select-Object -SkipLast 1\n\n#does our lap local admin exist and in Admin Group?\n\nif ($localadminallow -in $adminlist){ \n\n\t# now filter away the domain members you do not want to be listed \n\n\t$domain = \"domain.local\"\n\t$Regexes = '^(?!'+$domain+'\\\\).*$'\n\t$localAdmins = ($adminlist | Select-String -Pattern $Regexes).Line\n\n\t# now filter away the allow local admins \n\t \n\t$localAdmins = $localAdmins | Where-Object { $localadminallow -ne $_ }\n\n\n\t#Disable local Admins \n\t$ActiveLocalAdmins = foreach ($admin in $localAdmins)\n\t{\n\t (Get-LocalUser -Name $admin | ? {$_.enabled -eq 'True'}) | Disable-LocalUser\n\t}\n\n}\nelse \n{\n\tWrite-Host \"$localadminallow Does not exist\"\n}\n\n<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"<p>See Detection here https:\/\/pariswells.com\/blog\/research\/powershell-script-to-get-all-active-local-administrators-on-the-pc\/<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-7375","post","type-post","status-publish","format-standard","hentry","category-research"],"aioseo_notices":[],"aioseo_head":"\n\t\t<!-- All in One SEO 4.9.9 - aioseo.com -->\n\t<meta name=\"description\" content=\"See Detection here https:\/\/pariswells.com\/blog\/research\/powershell-script-to-get-all-active-local-administrators-on-the-pc\/ # get the list of user names that are member of the Administrators group # we can&#039;t use Get-LocalGroupMember due to bug https:\/\/github.com\/PowerShell\/PowerShell\/issues\/2996 # remove empty and non usable lines of the output $localadminallow = &quot;localadmin&quot; #get Local Admins $adminlist = (net localgroup Administrators) | Where-Object { $_ -match &#039;\\S&#039; }\" \/>\n\t<meta name=\"robots\" content=\"max-image-preview:large\" \/>\n\t<meta name=\"author\" content=\"paris\"\/>\n\t<link rel=\"canonical\" href=\"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices\" \/>\n\t<meta name=\"generator\" content=\"All in One SEO (AIOSEO) 4.9.9\" \/>\n\t\t<meta property=\"og:locale\" content=\"en_US\" \/>\n\t\t<meta property=\"og:site_name\" content=\"Welcome to Pariswells.com |\" \/>\n\t\t<meta property=\"og:type\" content=\"article\" \/>\n\t\t<meta property=\"og:title\" content=\"Proactive Remediation to Disable all Local Admins on a PC that\u2019s not the LAPS user for Azure AD devices | Welcome to Pariswells.com\" \/>\n\t\t<meta property=\"og:description\" content=\"See Detection here https:\/\/pariswells.com\/blog\/research\/powershell-script-to-get-all-active-local-administrators-on-the-pc\/ # get the list of user names that are member of the Administrators group # we can&#039;t use Get-LocalGroupMember due to bug https:\/\/github.com\/PowerShell\/PowerShell\/issues\/2996 # remove empty and non usable lines of the output $localadminallow = &quot;localadmin&quot; #get Local Admins $adminlist = (net localgroup Administrators) | Where-Object { $_ -match &#039;\\S&#039; }\" \/>\n\t\t<meta property=\"og:url\" content=\"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices\" \/>\n\t\t<meta property=\"article:published_time\" content=\"2023-10-15T21:27:52+00:00\" \/>\n\t\t<meta property=\"article:modified_time\" content=\"2023-11-09T23:18:45+00:00\" \/>\n\t\t<meta name=\"twitter:card\" content=\"summary\" \/>\n\t\t<meta name=\"twitter:title\" content=\"Proactive Remediation to Disable all Local Admins on a PC that\u2019s not the LAPS user for Azure AD devices | Welcome to Pariswells.com\" \/>\n\t\t<meta name=\"twitter:description\" content=\"See Detection here https:\/\/pariswells.com\/blog\/research\/powershell-script-to-get-all-active-local-administrators-on-the-pc\/ # get the list of user names that are member of the Administrators group # we can&#039;t use Get-LocalGroupMember due to bug https:\/\/github.com\/PowerShell\/PowerShell\/issues\/2996 # remove empty and non usable lines of the output $localadminallow = &quot;localadmin&quot; #get Local Admins $adminlist = (net localgroup Administrators) | Where-Object { $_ -match &#039;\\S&#039; }\" \/>\n\t\t<script type=\"application\/ld+json\" class=\"aioseo-schema\">\n\t\t\t{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#article\",\"name\":\"Proactive Remediation to Disable all Local Admins on a PC that\\u2019s not the LAPS user for Azure AD devices | Welcome to Pariswells.com\",\"headline\":\"Proactive Remediation to Disable all Local Admins on a PC that&#8217;s not the LAPS user for Azure AD devices\",\"author\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/author\\\/paris#author\"},\"publisher\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/#organization\"},\"datePublished\":\"2023-10-15T21:27:52+00:00\",\"dateModified\":\"2023-11-09T23:18:45+00:00\",\"inLanguage\":\"en-US\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#webpage\"},\"isPartOf\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#webpage\"},\"articleSection\":\"Research\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#breadcrumblist\",\"itemListElement\":[{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog#listItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/pariswells.com\\\/blog\",\"nextItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/category\\\/research#listItem\",\"name\":\"Research\"}},{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/category\\\/research#listItem\",\"position\":2,\"name\":\"Research\",\"item\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/category\\\/research\",\"nextItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#listItem\",\"name\":\"Proactive Remediation to Disable all Local Admins on a PC that&#8217;s not the LAPS user for Azure AD devices\"},\"previousItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog#listItem\",\"name\":\"Home\"}},{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#listItem\",\"position\":3,\"name\":\"Proactive Remediation to Disable all Local Admins on a PC that&#8217;s not the LAPS user for Azure AD devices\",\"previousItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/category\\\/research#listItem\",\"name\":\"Research\"}}]},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/#organization\",\"name\":\"Welcome to Pariswells.com\",\"url\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/author\\\/paris#author\",\"url\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/author\\\/paris\",\"name\":\"paris\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#authorImage\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/93b8ee3f592ac401167f870452bd82d43de80152cd3524e2853403658ada9984?s=96&d=mm&r=g\",\"width\":96,\"height\":96,\"caption\":\"paris\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#webpage\",\"url\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices\",\"name\":\"Proactive Remediation to Disable all Local Admins on a PC that\\u2019s not the LAPS user for Azure AD devices | Welcome to Pariswells.com\",\"description\":\"See Detection here https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/powershell-script-to-get-all-active-local-administrators-on-the-pc\\\/ # get the list of user names that are member of the Administrators group # we can't use Get-LocalGroupMember due to bug https:\\\/\\\/github.com\\\/PowerShell\\\/PowerShell\\\/issues\\\/2996 # remove empty and non usable lines of the output $localadminallow = \\\"localadmin\\\" #get Local Admins $adminlist = (net localgroup Administrators) | Where-Object { $_ -match '\\\\S' }\",\"inLanguage\":\"en-US\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/#website\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#breadcrumblist\"},\"author\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/author\\\/paris#author\"},\"creator\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/author\\\/paris#author\"},\"datePublished\":\"2023-10-15T21:27:52+00:00\",\"dateModified\":\"2023-11-09T23:18:45+00:00\"},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/\",\"name\":\"Welcome to Pariswells.com\",\"inLanguage\":\"en-US\",\"publisher\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/#organization\"}}]}\n\t\t<\/script>\n\t\t<!-- All in One SEO -->\n\n","aioseo_head_json":{"title":"Proactive Remediation to Disable all Local Admins on a PC that\u2019s not the LAPS user for Azure AD devices | Welcome to Pariswells.com","description":"See Detection here https:\/\/pariswells.com\/blog\/research\/powershell-script-to-get-all-active-local-administrators-on-the-pc\/ # get the list of user names that are member of the Administrators group # we can't use Get-LocalGroupMember due to bug https:\/\/github.com\/PowerShell\/PowerShell\/issues\/2996 # remove empty and non usable lines of the output $localadminallow = \"localadmin\" #get Local Admins $adminlist = (net localgroup Administrators) | Where-Object { $_ -match '\\S' }","canonical_url":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices","robots":"max-image-preview:large","keywords":"","webmasterTools":{"miscellaneous":""},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#article","name":"Proactive Remediation to Disable all Local Admins on a PC that\u2019s not the LAPS user for Azure AD devices | Welcome to Pariswells.com","headline":"Proactive Remediation to Disable all Local Admins on a PC that&#8217;s not the LAPS user for Azure AD devices","author":{"@id":"https:\/\/pariswells.com\/blog\/author\/paris#author"},"publisher":{"@id":"https:\/\/pariswells.com\/blog\/#organization"},"datePublished":"2023-10-15T21:27:52+00:00","dateModified":"2023-11-09T23:18:45+00:00","inLanguage":"en-US","mainEntityOfPage":{"@id":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#webpage"},"isPartOf":{"@id":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#webpage"},"articleSection":"Research"},{"@type":"BreadcrumbList","@id":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#breadcrumblist","itemListElement":[{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog#listItem","position":1,"name":"Home","item":"https:\/\/pariswells.com\/blog","nextItem":{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog\/category\/research#listItem","name":"Research"}},{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog\/category\/research#listItem","position":2,"name":"Research","item":"https:\/\/pariswells.com\/blog\/category\/research","nextItem":{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#listItem","name":"Proactive Remediation to Disable all Local Admins on a PC that&#8217;s not the LAPS user for Azure AD devices"},"previousItem":{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog#listItem","name":"Home"}},{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#listItem","position":3,"name":"Proactive Remediation to Disable all Local Admins on a PC that&#8217;s not the LAPS user for Azure AD devices","previousItem":{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog\/category\/research#listItem","name":"Research"}}]},{"@type":"Organization","@id":"https:\/\/pariswells.com\/blog\/#organization","name":"Welcome to Pariswells.com","url":"https:\/\/pariswells.com\/blog\/"},{"@type":"Person","@id":"https:\/\/pariswells.com\/blog\/author\/paris#author","url":"https:\/\/pariswells.com\/blog\/author\/paris","name":"paris","image":{"@type":"ImageObject","@id":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#authorImage","url":"https:\/\/secure.gravatar.com\/avatar\/93b8ee3f592ac401167f870452bd82d43de80152cd3524e2853403658ada9984?s=96&d=mm&r=g","width":96,"height":96,"caption":"paris"}},{"@type":"WebPage","@id":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#webpage","url":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices","name":"Proactive Remediation to Disable all Local Admins on a PC that\u2019s not the LAPS user for Azure AD devices | Welcome to Pariswells.com","description":"See Detection here https:\/\/pariswells.com\/blog\/research\/powershell-script-to-get-all-active-local-administrators-on-the-pc\/ # get the list of user names that are member of the Administrators group # we can't use Get-LocalGroupMember due to bug https:\/\/github.com\/PowerShell\/PowerShell\/issues\/2996 # remove empty and non usable lines of the output $localadminallow = \"localadmin\" #get Local Admins $adminlist = (net localgroup Administrators) | Where-Object { $_ -match '\\S' }","inLanguage":"en-US","isPartOf":{"@id":"https:\/\/pariswells.com\/blog\/#website"},"breadcrumb":{"@id":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices#breadcrumblist"},"author":{"@id":"https:\/\/pariswells.com\/blog\/author\/paris#author"},"creator":{"@id":"https:\/\/pariswells.com\/blog\/author\/paris#author"},"datePublished":"2023-10-15T21:27:52+00:00","dateModified":"2023-11-09T23:18:45+00:00"},{"@type":"WebSite","@id":"https:\/\/pariswells.com\/blog\/#website","url":"https:\/\/pariswells.com\/blog\/","name":"Welcome to Pariswells.com","inLanguage":"en-US","publisher":{"@id":"https:\/\/pariswells.com\/blog\/#organization"}}]},"og:locale":"en_US","og:site_name":"Welcome to Pariswells.com |","og:type":"article","og:title":"Proactive Remediation to Disable all Local Admins on a PC that\u2019s not the LAPS user for Azure AD devices | Welcome to Pariswells.com","og:description":"See Detection here https:\/\/pariswells.com\/blog\/research\/powershell-script-to-get-all-active-local-administrators-on-the-pc\/ # get the list of user names that are member of the Administrators group # we can't use Get-LocalGroupMember due to bug https:\/\/github.com\/PowerShell\/PowerShell\/issues\/2996 # remove empty and non usable lines of the output $localadminallow = &quot;localadmin&quot; #get Local Admins $adminlist = (net localgroup Administrators) | Where-Object { $_ -match '\\S' }","og:url":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices","article:published_time":"2023-10-15T21:27:52+00:00","article:modified_time":"2023-11-09T23:18:45+00:00","twitter:card":"summary","twitter:title":"Proactive Remediation to Disable all Local Admins on a PC that\u2019s not the LAPS user for Azure AD devices | Welcome to Pariswells.com","twitter:description":"See Detection here https:\/\/pariswells.com\/blog\/research\/powershell-script-to-get-all-active-local-administrators-on-the-pc\/ # get the list of user names that are member of the Administrators group # we can't use Get-LocalGroupMember due to bug https:\/\/github.com\/PowerShell\/PowerShell\/issues\/2996 # remove empty and non usable lines of the output $localadminallow = &quot;localadmin&quot; #get Local Admins $adminlist = (net localgroup Administrators) | Where-Object { $_ -match '\\S' }"},"aioseo_meta_data":{"post_id":"7375","title":null,"description":null,"keywords":[],"keyphrases":{"focus":{"keyphrase":"","score":0,"analysis":{"keyphraseInTitle":{"score":0,"maxScore":9,"error":1}}},"additional":[]},"canonical_url":null,"og_title":null,"og_description":null,"og_object_type":"default","og_image_type":"default","og_image_url":null,"og_image_width":null,"og_image_height":null,"og_image_custom_url":null,"og_image_custom_fields":null,"og_video":"","og_custom_url":null,"og_article_section":null,"og_article_tags":[],"twitter_use_og":false,"twitter_card":"default","twitter_image_type":"default","twitter_image_url":null,"twitter_image_custom_url":null,"twitter_image_custom_fields":null,"twitter_title":null,"twitter_description":null,"schema":{"blockGraphs":[],"customGraphs":[],"default":{"data":{"Article":[],"Course":[],"Dataset":[],"FAQPage":[],"Movie":[],"Person":[],"Product":[],"ProductReview":[],"Car":[],"Recipe":[],"Service":[],"SoftwareApplication":[],"WebPage":[]},"graphName":"Article","isEnabled":true},"graphs":[]},"schema_type":"default","schema_type_options":null,"pillar_content":false,"robots_default":true,"robots_noindex":false,"robots_noarchive":false,"robots_nosnippet":false,"robots_nofollow":false,"robots_noimageindex":false,"robots_noodp":false,"robots_notranslate":false,"robots_max_snippet":"-1","robots_max_videopreview":"-1","robots_max_imagepreview":"large","priority":null,"frequency":"default","location":null,"local_seo":null,"breadcrumb_settings":null,"limit_modified_date":false,"ai":null,"created":"2023-10-15 21:26:39","updated":"2023-11-09 23:32:36","primary_term":null,"seo_analyzer_scan_date":null},"aioseo_breadcrumb":"<div class=\"aioseo-breadcrumbs\"><span class=\"aioseo-breadcrumb\">\n\t\t\t<a href=\"https:\/\/pariswells.com\/blog\" title=\"Home\">Home<\/a>\n\t\t<\/span><span class=\"aioseo-breadcrumb-separator\">&raquo;<\/span><span class=\"aioseo-breadcrumb\">\n\t\t\t<a href=\"https:\/\/pariswells.com\/blog\/category\/research\" title=\"Research\">Research<\/a>\n\t\t<\/span><span class=\"aioseo-breadcrumb-separator\">&raquo;<\/span><span class=\"aioseo-breadcrumb\">\n\t\t\tProactive Remediation to Disable all Local Admins on a PC that\u2019s not the LAPS user for Azure AD devices\n\t\t<\/span><\/div>","aioseo_breadcrumb_json":[{"label":"Home","link":"https:\/\/pariswells.com\/blog"},{"label":"Research","link":"https:\/\/pariswells.com\/blog\/category\/research"},{"label":"Proactive Remediation to Disable all Local Admins on a PC that&#8217;s not the LAPS user for Azure AD devices","link":"https:\/\/pariswells.com\/blog\/research\/proactive-remediation-to-disable-all-local-admins-on-a-pc-thats-not-the-laps-user-for-azure-ad-devices"}],"_links":{"self":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts\/7375","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/comments?post=7375"}],"version-history":[{"count":3,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts\/7375\/revisions"}],"predecessor-version":[{"id":7426,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts\/7375\/revisions\/7426"}],"wp:attachment":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/media?parent=7375"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/categories?post=7375"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/tags?post=7375"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}