Problem
The administrators group on Windows is deleted, leaving the device without admin account.
Environment
- Windows
- Google Credential Provider for Windows
Solution
- Log in to the Admin console.
- Navigate to Devices > Mobile and endpoints > Settings > Windows Settings.
- Click on Administrative privileges.
- If the feature is enabled, go to the section Accounts with local administrative access.
- Add the users to the list, you must enter the accounts for the local Administrator group, separated by commas.
- Enter Active Directory users as YourDomain\user, Active Directory groups as YourDomain\group and local users as username
- Save the changes.
Cause
When the policy is not properly configured it will clear the administrators group on the device.