Configure a policy of local group admins in a lab Intune

Creating an `Endpoint Security/Account Protection` Policy

By default, I wanted the "Administrators" group on the devices to include the "technicians" group, so I created this policy in "Endpoint Security > Account Protection".

Group Admin Policy Intune Lab 1

I selected the "platform" as Windows and the "profile" as Local user group membership.

Group Admin Policy Intune Lab 2

I named the policy.

Group Admin Policy Intune Lab 3

I clicked on "Add" and then on "Select users/group" to select the group I want to add to the local admin group on the devices.

Group Admin Policy Intune Lab 4

I selected "GRP-IT".

Group Admin Policy Intune Lab 5

I left the "Scope tags" as default.

Group Admin Policy Intune Lab 6

Then, I selected the dynamic group that includes all devices with the "FRLAB" category.

Group Admin Policy Intune Lab 7

Finally, I clicked on Save!

Group Admin Policy Intune Lab 8

Configure a policy of local group admins in a lab Intune

Creating an Endpoint Security/Account Protection Policy

On this page

Creating an `Endpoint Security/Account Protection` Policy