Hi,
Thanks for posting in Microsoft MECM Q&A forum.
Per my experience, we can't achieve LAPS without access to manage AD/DC. An domain account that has Schema Admin rights is needed to extend the Active Directory Schema. By default, we also need Domain Admins permissions to configure Active Directory Computer Permissions and User Permissions.
For more detailed steps, please refer to:
Microsoft LAPS Step by Step – Part 1
Microsoft LAPS Step by Step – Part 2
Please note: The links are not from Microsoft, just for your reference.
Hope it helps. Thanks for your time.
Best regards,
Simon
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.