In October 2022, I published a blog post titled The 10 most important details about the upcoming Windows LAPS solution, which revealed that Microsoft was developing a new LAPS solution called Windows LAPS. This solution would address the long-awaited support for cloud-only devices. As of April 11, 2023, Windows LAPS for Windows Server Active Directory is now publicly available. Previously, Windows LAPS was only accessible through private preview. Unfortunately, Windows LAPS for Azure Active Directory remains in private preview and is not open to new customers. However, the Azure Active Directory LAPS scenario is anticipated to enter public preview in Q2 2023. In this blog post, I will be sharing my initial testing impressions of Windows LAPS with the Windows Server Active Directory (on-premises) scenario.

1. Supported platforms
2. The advantages of Windows LAPS over Legacy Microsoft LAPS
   1. # Seamless integration
   2. # Password encryption
   3. # More New capabilities
3. Windows LAPS for Windows Server Active Directory – Configuration
   1. Windows LAPS Requirements
   2. Prepare Windows LAPS ADMX templates
   3. Update the Windows Server Active Directory schema
   4. Grant the managed device permission to update its password
   5. Delegate Windows LAPS permission
   6. Configure policy settings for Windows LAPS
4. Windows LAPS for Windows Server Active Directory – Admin Experience
   1. Read Windows LAPS Password
   2. Windows LAPS password rotation
   3. Get Windows LAPS Password History
   4. Password backup for DSRM accounts
5. Conclusion