MI

Microsoft LAPS

Microsoft Local Administrator Password Solution (LAPS) manages local administrator passwords on domain-joined devices by securely storing and rotating passwords in Active Directory or Microsoft Entra ID. It supports Windows Server 2003 SP1 and later, Windows Vista SP2 and later, and integrates with Group Policy and Microsoft Intune for management.
Latest: 11
Last checked: Nov 2, 2025 6:42pm
Rank: 4069/15140
Monitored via:
Winget Request more monitors
Follow to track new versions in your feed.
Report

Overview

0
License: ProprietaryWinget: Available
Product Page Support Page Download Page

Version & Lifecycle

0
Current: 11 Oldest supported: Windows Server 2003 SP1 Predicted EOL: 2025-12-31 Avg cadence: Every 934 days

Tags

0
security password management local administrator Active Directory Microsoft Entra Windows Server Intune

Top Contributors

Top sitewide contributors:

  1. Anbarasan
  2. nico_k
  3. Bob
  4. Vigneshwaran

Community Notes

Deployment tip • May 7, 2026
0

Windows LAPS and legacy LAPS migration note

For managed Microsoft LAPS deployments, do not treat the legacy LAPS MSI as a routine base install on current Windows builds. Windows LAPS is built into supported Windows client and Server releases that have the April 11, 2023 update or later, and Microsoft states that Windows LAPS does not require installing legacy Microsoft LAPS. The legacy product is deprecated on newer Microsoft OS versions; use legacy-emulation mode only as a migration bridge for existing deployments.

If you are migrating or troubleshooting applicability, check whether the legacy Client Side Extension is still present. Microsoft documents the detection location as HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{D76B9641-3288-4f75-942D-087DE603E3EA} and the DllName value under that key. Avoid having Windows LAPS and legacy LAPS attempt to manage the same local administrator account.

Official sources: Windows LAPS overview and legacy Microsoft LAPS emulation mode.

Release Notes & Updates

0
Avg cadence:
Updates • 0

Help us match vulnerabilities

No vulnerability match yet. Pick the right product:

Looking for matching products…
Don’t see it? Paste a CPE

Also known as

Other names people use for this app — helps search and matching.

LAPS

Packaging Notes

0

Requires .NET Framework 4.0 and PowerShell 2.0 minimum; schema extension needed for Active Directory

Notes

0

LAPS requires extending the Active Directory schema with ms-Mcs-AdmPwd and ms-Mcs-AdmPwdExpirationTime attributes. It supports backup to Microsoft Entra ID without dependency on Microsoft Entra Connect. Role-based access control and auditing are supported.

Your community for enterprise application details

Explore

Account

© 2026 RWK Systems. All rights reserved.
Sign in