What's new
Forums on Intune, SCCM, and Windows 11

Welcome to the forums. Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your topics and posts, as well as connect with other members through your own private inbox!

PENDING WMI for Task Sequence

  • Thread starter Thread starter dba55
  • Start date Start date
  • Replies Replies 5
  • Views Views 3K
D

dba55

Member
Messages
5
Reaction score
0
Points
1
Does anyone know if there is a way to NOT run a task sequence if the Built in Administrator account is logged in. But only if another user is logged in?
 
Sort by date Sort by votes
Just to be clear it does NOT run as built in administrator. It runs as Local system account. There is a HUGE different.

What are you trying to do?
 
Upvote 0 Downvote
I want it to run when anybody but the built in administrator is logged on. This is LAPS install and it will disrupt the build process if it changes the password during the build. So I want it to run after the build is completed and a user logs in. So I was wondering if using a WMI query could be the answer to this.
 
Upvote 0 Downvote
MDT is using the Local Administrator account to build machines. During the build process if the Local Administrator password gets changed, then the build fails. I want to install LAPS after the build process is complete using a task sequence at logon. So I would like to see if I can create a WMI query that would look at the logged on user and NOT run the LAPS install if the logged on user is the local Administrator. Then when a user (anyone but the local Administrator) logs on, then the LAPS install will run. I hope this is a clearer explanation.
 
Upvote 0 Downvote
dba55 said:
I want it to run when anybody but the built in administrator is logged on. This is LAPS install and it will disrupt the build process if it changes the password during the build. So I want it to run after the build is completed and a user logs in. So I was wondering if using a WMI query could be the answer to this.
Click to expand...
What is your environment, domain or workgroup? If the former, why not use a different account like a domain join account? Also, something does not seem to add up when you say MDT is using the local account to build machines, please elaborate. Where is MDT pulling these creds from? When you say local admin account, in my mind, I am thinking an account local to the computer. Also, if these are new computers being built, then by design there is no "previous" account to reference that MDT should be using to throw a password error. Forgive me, just trying to wrap my head around your process. However, as already pointed out, the local system account does everything, it is only if there is domain join step that specific creds are needed. If a workgroup, then based on either a step in the TS or the customsettingings.ini, local accounts will get created as defined
 
Upvote 0 Downvote
You must log in or register to reply here.

Similar threads

  • PENDING sk sequence 'Windows 11 Task Sequence - 24H2' has failed with the error code 0x80070002 in the task sequence step 'Apply Operating System Image'.
  • PENDING Computers sleep after OSD
  • PENDING Domain Join Service Account Not Working
  • PENDING Windows 11 24H2 slow to restart task sequence task execution following reboot task in bare metal OS deployment
  • PENDING SCCM Surface PRO 9 5G (ARM64) PXE no boot with Dongle Microsoft Thunderbolt 4

    • Forum statistics

    Threads
    7,070
    Messages
    27,627
    Members
    17,888
    Latest member
    rtk

    Latest posts

    Trending content
    Back
    Top