Hey @Luca Fabbri ,
Your topic is always a challenge. If you script your way and use a PowerShell script assigned in Intune you have to deal with a clear text password in the script and log files or you come up with a better idea. I know there is no official MS LAPS solution but there are some solutions out there to address this and they have build something like LAPS for Intune:
see a good collection here:
https://www.vansurksum.com/2020/02/11/challenges-while-managing-administrative-privileges-on-your-azure-ad-joined-windows-10-devices/
and there is also the solution https://www.realmjoin.com which provides a App Store for Intune and also a LAPS component...
So, I guess you have to look now if one of the solutions works for you :-).
best,
Oliver (@okieselb, oliverkieselbach.com)