So to prevent lateral movement I'm configuring serverless LAPS. Local admin passwords are reset every month, and our global local admin account is removed.
Now I want to remote manage a device. Tried with local credentials but no dice. I can open file explorer with these credentials. Opening services through mmc won't even let me choose credentials.
How do you guys remote manage endpoints whilst not using a global admin account?
Now I want to remote manage a device. Tried with local credentials but no dice. I can open file explorer with these credentials. Opening services through mmc won't even let me choose credentials.
How do you guys remote manage endpoints whilst not using a global admin account?