Let’s have a quick look at the option to provide admin access to Windows 365 Cloud PC using Intune user settings policy. Windows 365 service delivers personalized desktops in the cloud. Microsoft announced the general availability of Windows 365 on the 2nd of August 2021.
You can use the user settings policy to add assigned users to the local administrator on all their cloud PCs. The admin access might be required to support some of the developer use case scenarios. If you have a use case to add a generic admin account to Cloud PCs, you can deploy PowerShell scripts using Intune.
Deploy User Settings Policy to Windows 365 Cloud PC
You can deploy the user settings policy to Windows 365 cloud PC. Let’s have a quick walkthrough of this policy to add users to the local administrator group on their Cloud PCs.
- Login to Microsoft Endpoint Manager portal.
- Navigate to Devices -> Windows 365 node.
- Click on +Add button to create user settings policy.
Enabling this settings policy elevates end users to a local administrator on all their cloud PCs. On the settings page, you have two options.
- Enter the Name of the User Settings Policy.
- Select the option to enable or disable local admin policy.
- On option is selected.
- Click on Next button to continue.
I have added the W365 Users Azure AD group, where I have two users as members. I used the same group during the Windows 365 provisioning guide. You can click on the Next button to continue to the validation and confirmation page.
As you can see in the below screenshot, the validation is passed for the user settings policy. Click on Create button to complete the user settings creation process from Intune MEM portal.
The following is the screenshot from a Cloud PC before applying the user settings policy to add assigned users to the local administrative group on their Cloud PCs. So, you can’t see any user added to the local administrators group.
After applying the user settings policy, you can see that MEMCM/anoopb user is added to the local administrators group. This user got admin access on the assigned Cloud PC. The policy to elevate admin permissions for an assigned user on the respective Cloud PC is useful.