How to add another user as local administrator on the machine that is joined to Entra?

By default only the person who joined the computer to Entra is granted local administrator rights. Adding someone as a 'primary user' in Intune admin portal does not grant them local admin access on the workstation. To add someone as local administrator on the machine that is joined to Entra, follow these steps:

  1. Ask the user to sign in to AAD, if they have never done it on this computer (this creates their local Windows profile).
  2. Sign in with local admin account.
  3. Launch the Command Prompt as administrator and type in the following command replacing "{uwinid}" with the actual UWin ID of the user:

    net localgroup Administrators UWINAD\{uwinid} /add
Print Article

Related Articles (1)

Setting up workstations for graduate students
Configuration/setup options for Windows 10 "corporate" computers that are used by graduate students.