What's new
Forums on Intune, SCCM, and Windows 11

Welcome to the forums. Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your topics and posts, as well as connect with other members through your own private inbox!

NEW WMI for Task Sequence

  • Thread starter Thread starter dba55
  • Start date Start date
  • Replies Replies 5
  • Views Views 3K
D

dba55

Member
Messages
5
Reaction score
0
Points
1
Does anyone know if there is a way to NOT run a task sequence if the Built in Administrator account is logged in. But only if another user is logged in?
 
Sort by date Sort by votes
Just to be clear it does NOT run as built in administrator. It runs as Local system account. There is a HUGE different.

What are you trying to do?
 
Upvote 0 Downvote
I want it to run when anybody but the built in administrator is logged on. This is LAPS install and it will disrupt the build process if it changes the password during the build. So I want it to run after the build is completed and a user logs in. So I was wondering if using a WMI query could be the answer to this.
 
Upvote 0 Downvote
MDT is using the Local Administrator account to build machines. During the build process if the Local Administrator password gets changed, then the build fails. I want to install LAPS after the build process is complete using a task sequence at logon. So I would like to see if I can create a WMI query that would look at the logged on user and NOT run the LAPS install if the logged on user is the local Administrator. Then when a user (anyone but the local Administrator) logs on, then the LAPS install will run. I hope this is a clearer explanation.
 
Upvote 0 Downvote
dba55 said:
I want it to run when anybody but the built in administrator is logged on. This is LAPS install and it will disrupt the build process if it changes the password during the build. So I want it to run after the build is completed and a user logs in. So I was wondering if using a WMI query could be the answer to this.
Click to expand...
What is your environment, domain or workgroup? If the former, why not use a different account like a domain join account? Also, something does not seem to add up when you say MDT is using the local account to build machines, please elaborate. Where is MDT pulling these creds from? When you say local admin account, in my mind, I am thinking an account local to the computer. Also, if these are new computers being built, then by design there is no "previous" account to reference that MDT should be using to throw a password error. Forgive me, just trying to wrap my head around your process. However, as already pointed out, the local system account does everything, it is only if there is domain join step that specific creds are needed. If a workgroup, then based on either a step in the TS or the customsettingings.ini, local accounts will get created as defined
 
Upvote 0 Downvote
You must log in or register to reply here.

Similar threads

  • SOLVED smsboot\x64\boot file missing
  • PENDING Code 6 for CCMSetup during PXE Task Sequence deployment
  • PENDING Failed Upgrade Windows 11 23H2 to Windows 11 24H2
  • PENDING Dell Latitude 3190 2 in 1s not imaging correctly
  • PENDING Service Tool Generation Plus - Push out via SCCM

    • Forum statistics

    Threads
    7,053
    Messages
    27,553
    Members
    17,772
    Latest member
    Vsykerppa

    Latest posts

    Trending content
    Back
    Top