Message

The Local Administrator Password feature was successfully loaded and initialized.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

The Local Administrator Password dll failed to initialize.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

The Local Administrator Password dll was unloaded.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS policy processing is now starting.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS policy processing succeeded.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS policy processing failed with the error code below.
 
 Error code: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS password encryption is required but the Active Directory domain is not yet at 2016 domain functional level. The password was not updated and no changes will be made until this is corrected.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS is not currently configured to manage any account.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS policy is currently not supported on domain controllers.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS is configured to backup passwords to Active Directory.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS is configured to backup passwords to Azure Active Directory.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS failed when querying Active Directory for the current computer state.
 
 Error code: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The Active Directory schema has not been updated with the necessary LAPS attributes.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS failed to find the currently configured local administrator account.
 
 Account name: %1
 Error code: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS is updating the managed account password due to an Administrator-initiated request.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

The managed account password needs to be updated due to one or more reasons (%1):
 
 %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The managed account password does not need to be updated at this time.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS failed to update Active Directory with the new password. The current password has not been modified.
 
 Error code: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS successfully updated Active Directory with the new password.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS failed to update the local admin account with the new password.
 
 Account name: %1
 Account RID: %2
 Error code: %3
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS successfully updated the local admin account with the new password.
 
 Account name: %1
 Account RID: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The current LAPS policy is configured as follows:
 
 Policy source: %1
 Backup directory: %2
 Local administrator account name: %3
 Password age in days: %4
 Password complexity: %5
 Password length: %6
 Password expiration protection enabled: %7
 Password encryption enabled: %8
 Password encryption target principal: %9
 Password encrypted history size: %10
 Backup DSRM password on domain controllers: %11
 Post authentication grace period (hours): %12
 Post authentication actions: %13
 Automatic account management enabled: %14
 Automatic account management: Target: %15
 Automatic account management: Name or name prefix: %16
 Automatic account management: Account enabled: %17
 Automatic account management: Randomize name: %18
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The current LAPS policy is configured as follows:
 
 Policy source: %1
 Backup directory: %2
 Local administrator account name: %3
 Password age in days: %4
 Password complexity: %5
 Password length: %6
 Post authentication grace period (hours): %7
 Post authentication actions: %8
 Automatic account management enabled: %9
 Automatic account management: Target: %10
 Automatic account management: Name or name prefix: %11
 Automatic account management: Account enabled: %12
 Automatic account management: Randomize name: %13
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The current LAPS policy is configured as follows:
 
 Policy source: %1
 Backup directory: %2
 Local administrator account name: %3
 Password age in days: %4
 Password complexity: %5
 Password length: %6
 Password expiration protection enabled: %7
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS policy is configured as disabled.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

Azure discovery failed.
 
 Error code: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS was unable to authenticate to Azure using the device identity.
 
 Error code: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS was unable to create an acceptable new password. Please verify that the LAPS password length and complexity policy is compatible with the domain and local password policy settings.
 
 Error code: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS failed to update Azure Active Directory with the new password.
 
 Error code: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS successfully updated Azure Active Directory with the new password.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS is sending a message to the following endpoint.
 
 %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS blocked an external request that tried to modify the password of the current managed account.
 
 Account name: %1
 Account RID: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS was unable to authenticate to Azure using the device identity.
 
 Web status: %1(%2)
 Error code: %3
 Hresult: %4
 Error msg: %5
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The machine is configured with legacy LAPS policy settings but a legacy LAPS product appears to be installed. The configured account's password will not be managed by Windows until the legacy product is uninstalled. Alternatively you may consider configuring the newer LAPS policy settings.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

The configured encryption principal is an isolated (ambiguous) name. This must be corrected before the configured account's password can be managed. Please specify the name in either user@domain.com or domain\user format.
 
 Encryption principal name: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The configured encryption principal name could not be mapped to a known account. This must be corrected before the configured account's password can be managed. 
 
 Encryption principal name: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The SID for the configured encryption principal could not be mapped to a known account. This must be corrected before the configured account's password can be managed. 
 
 Encryption principal SID: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The DSRM account cannot be managed because password encryption is disabled. Please enable password encryption in the LAPS policy settings in order to enable DSRM account password management.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS failed to update the DSRM administrator account with the new password.
 
 DSRM account name: %1
 DSRM account RID: %2
 Error code: %3
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS successfully updated the DSRM administrator account with the new password.
 
 DSRM account name: %1
 DSRM account RID: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS blocked an external request that tried to modify the password of the currently managed DSRM account.
 
 Account RID: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS detected a successful authentication for the currently managed account. A background task has been scheduled to execute the configured post-authentication actions after the configured grace period has expired.
 
 Account name: %1
 Account RID: %2
 Password reset timer deadline: %3
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The post-authentication grace period has expired per policy. The configured post-authentication actions will now be executed.
 
 Account name: %1
 Account RID: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS failed to reset the password for the currently managed account. The password is considered expired due to an authentication event. LAPS will continue retrying the password reset operation until it succeeds.
 
 Account name: %1
 Account RID: %2
 Password reset retry count: %3
 Error code: %4
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS successfully reset the password for the currently managed account after the expiration of the post-authentication grace period.
 
 Account name: %1
 Account RID: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS successfully reset the password for the currently managed account. One or more configured post-authentication actions failed. The operations will not be retried.
 
 Account name: %1
 Account RID: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS was scheduled to reset the password for the currently managed account after expiration of the grace period after a previous authentication event. However a password reset has already occurred so it will not be reset again. Remaining post-authentication actions will still be executed.
 
 Account name: %1
 Account RID: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

A pending post-authentication reset timer has been rescheduled after a reboot.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

The currently pending post-authentication reset timer has been retried the maximum allowed number attempts and will no longer be scheduled.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS attempted to reboot the machine as a post-authentication action but the operation failed.
 
 Error code: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS is updating the managed account password due to an Azure-initiated request.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS is updating the managed account password in response to a post-authentication action.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS is processing the current policy per normal background scheduling.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS is processing the current policy in response to an Administrator request.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS is processing the current policy in response to a Group Policy change notification.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS is using the following domain controller:
 
 DCName: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS failed to locate a writable domain controller.
 
 Error code: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS was unable to bind over LDAP to the domain controller:
 %
 DCName: %1
 Error code: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The current policy is configured to backup the password to Azure Active Directory, but has a configured PasswordAgeDays value that is less than the required minimum:
 
 Configured value: %1
 Minimum value: %2
 
 The configured value will be ignored and the minimum value will be used instead.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

Azure returned a failure code.
 
 HTTP status code: %1
 
 Response text:
 %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The current policy is configured to backup the password to Azure Active Directory, but the machine is only joined to Active Directory. Please configure the policy to backup the password to Active Directory. No action will be taken until this is corrected.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

The current policy is configured to backup the password to Azure Active Directory, but the machine is workplace-joined. LAPS does not support workplace-joined machines for any scenario.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

The current policy is configured to backup the password to Active Directory, but the machine is only joined to Azure Active Directory. Please configure the policy to backup the password to Azure Active Directory. No action will be taken until this is corrected.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

The current policy is configured to backup the password to Active Directory, but the machine is workplace-joined. LAPS does not support workplace-joined machines for any scenario.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

The current policy is configured to backup the DSRM account password to Active Directory, but password encryption is not enabled. Please configure the policy to enable password encryption. No action will be taken until this is corrected.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS received an LDAP_INSUFFICIENT_RIGHTS error trying to update the password using the legacy LAPS password attribute. You should update the permissions on this computer's container using the Update-AdmPwdComputerSelfPermission cmdlet, for example:
 
 Update-AdmPwdComputerSelfPermission -Identity '%1' 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS received an LDAP_INSUFFICIENT_RIGHTS error trying to update the password using the LAPS password attribute. You should update the permissions on this computer's container using the Set-LapsADComputerSelfPermission cmdlet, for example:
 
 Set-LapsADComputerSelfPermission -Identity '%1' 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The configured local account is currently disabled. The account must be enabled before it can be used.
 
 Account name: %1
 Account RID: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

This device has been joined to Azure AD. This message is informational only and no action is necessary.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

This device has been unjoined from Azure AD. This message is informational only and no action is necessary.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

This device has been joined to Active Directory. This message is informational only and no action is necessary.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

This device has been unjoined from Active Directory. This message is informational only and no action is necessary.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

Encryption of the new password failed.
 
 Error code: %1
 
 This problem may occur if a KDS root key is not available. Verify that a KDS root key is available by running the Get-KdsRootKey PowerShell cmdlet, and also verify that the root key's EffectiveTime field is valid right now.
 
 If a KDS root key is not present, you must add one by running the Add-KdsRootKey PowerShell cmdlet with the -EffectiveImmediately parameter. Allow sufficient time for the new key to replicate around your forest.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS is now executing the configured post-authentication actions for the target account.
 
 Account name: %1
 Account sid: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS has successfully completed all configured post-authentication actions for the LAPS-managed account identity.
 Account name: %1
 Account sid: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS has completed all configured post-authentication actions for the LAPS-managed account identity. One or more of these actions encountered a failure. See the other intervening event log messages for more details.
 
 Account name: %1
 Account sid: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

A post-authentication action was pending for the account below, but the current policy is now targeting a different account. No post-authentication actions for the original account will be executed.
 
 Original account sid: %1
 Current account sid: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS found %1 interactive logon sessions using the managed account.
 
 Account name: %2
 Account sid: %3
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS successfully notified the following session that a logoff is pending shortly.
 
 ExecEnvId: %1
 State: %2
 SessionId: %3
 Session name: %4
 Host name: %5
 User name: %6
 Domain name: %7
 Farm name: %8
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS failed to notify the following session that a logoff is pending shortly. The logoff action will proceed regardless.
 
 ExecEnvId: %1
 State: %2
 SessionId: %3
 Session name: %4
 Host name: %5
 User name: %6
 Domain name: %7
 Farm name: %8
 
 Error: %9
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS is now pausing for %1 seconds to give the notified sessions time to logoff.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS is now logging off all notified sessions.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS successfully logged off the following session.
 
 ExecEnvId: %1
 State: %2
 SessionId: %3
 Session name: %4
 Host name: %5
 User name: %6
 Domain name: %7
 Farm name: %8
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS received an error trying to log off the following session. This action will not be retried.
 
 ExecEnvId: %1
 State: %2
 SessionId: %3
 Session name: %4
 Host name: %5
 User name: %6
 Domain name: %7
 Farm name: %8
 
 Error: %9
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS found %1 file share sessions using the managed account.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS successfully deleted the following file share session.
 
 SessionId: %1
 ClientComputerName: %2
 ClientUserName: %3
 NumOpens: %4
 SecondsIdle: %5
 SecondsExisted: %6
 ServerName: %7
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS failed to disconnect the following file share session. This action will not be retried.
 
 SessionId: %1
 ClientComputerName: %2
 ClientUserName: %3
 NumOpens: %4
 SecondsIdle: %5
 SecondsExisted: %6
 ServerName: %7
 
 Error: %8
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS found %1 processes using the managed account.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS successfully terminated the following process.
 
 Path: %1
 Process id: %2
 Account name: %3
 Account sid: %4
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS failed to terminate the following process. This action will not be retried.
 
 Path: %1
 Process id: %2
 Account name: %3
 Account sid: %4
 Error: %5
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The LAPS managed account was enabled.
 
 Account name: %1
 Account sid: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The LAPS managed account was disabled.
 
 Account name: %1
 Account sid: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The LAPS policy is configured for automatic account management mode, but the account name or prefix is too long and will be truncated. The maximum allowable length is 20 characters when account name randomization is disabled, or 14 characters when account name randomization is enabled.
 
 Configured account name or prefix: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The current automatically LAPS managed account was renamed.
 
 Previous account name: %1
 New account name: %2
 Account sid: %3
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS failed to rename the managed account.
 
 Account name: %1
 Account sid: %2
 Intended new account name: %3
 Error: %4
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS failed to enable the managed account.
 
 Account name: %1
 Account sid: %2
 Error: %3
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS failed to disable the managed account.
 
 Account name: %1
 Account sid: %2
 Error: %3
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS deleted the previously managed account.
 
 Account name: %1
 Account sid: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS failed to delete the previously managed account.
 
 Account name: %1
 Account sid: %2
 Error: %3
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS renamed and disabled the previously managed builtin administrator account.
 
 Previous account name: %1
 New account name: %2
 Account sid: %3
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS failed to rename and disable the previously managed builtin administrator account.
 
 Account sid: %1
 Error: %2
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS blocked an external request that attempted to modify the current automatically managed account.
 
 Account name: %1
 Account sid: %2
 Client name: %3
 Client address: %4
 Client process ID: %5
 Client process exe: %6
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS blocked an external request that attempted to delete the current automatically managed account.
 
 Account name: %1
 Account sid: %2
 Client name: %3
 Client address: %4
 Client process ID: %5
 Client process exe: %6
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS blocked an external request that attempted to modify the security descriptor of the current automatically managed account.
 
 Account name: %1
 Account sid: %2
 Client name: %3
 Client address: %4
 Client process ID: %5
 Client process exe: %6
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS blocked an external request that attempted to remove the current automatically managed account from the local administrators group.
 
 Account name: %1
 Account sid: %2
 Client name: %3
 Client address: %4
 Client process ID: %5
 Client process exe: %6
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS failed to update its local registry state.
 
 Error: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

LAPS has successfully completed all sysprep cleanup operations.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

LAPS failed to complete one or more sysprep cleanup operations.
 
 Error: %1
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Fields

Message

The msLAPSCurrentPasswordVersion attribute has not been added to the Active Directory schema. This attribute is used to detect torn state conditions caused by OS image rollback scenarios. All primary scenarios will function without this attribute however it is recommended that administrator fix this by re-running the latest Update-LapsADSchema cmdlet.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.

Message

One or more Local Administrator Password Solution (LAPS) MDM policy values were blocked from being set because the current machine is joined to neither Azure Active Directory or Active Directory.
 
 This message may be safely ignored but is likely to re-occur periodically. To stop further instances of this warning, please reconfigure your MDM policy so that no LAPS policy settings are applied to this machine.
 
 See https://go.microsoft.com/fwlink/?linkid=2220550 for more information.