question

NathanM-4866 avatar image
0 Votes"
NathanM-4866 asked CiciWu-MSFT answered

Defaultuser100000 causing Intune Device Compliance errors

I’ve been looking at this issue and wondering if anyone else has seen it. A lot of Win10 machines I have enrolled in Intune are triggering an error on the System Security -> Password expiration (days) in the Windows 10 Compliance Policy. I see this in the Windows Event Log:

MDM PolicyManager: Set policy precheck precheck call. Policy: (DeviceLock), Area: (DevicePasswordExpiration), int value: (0x3C) Result:(0x80550009) There are other standard users present who are not allowed to change their password..

It’s trigger from the Defaultuser100000 which is set up by Self Service Password Reset (SSPR) and maybe the Windows 10 Upgrade. If I delete that account, the error resolves and the device tests as compliant.

I could write a script and deploy it with Intune to delete that account but I’d rather not, I’m concerned it could have unintended side effects on the machine, especially with SSPR.

Anyone else seen this before and have any ideas on how to approach fixing it?

mem-intune-generalmem-intune-device-configurationsmem-intune-conditional-access
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

CiciWu-MSFT avatar image
0 Votes"
CiciWu-MSFT answered

We have met the similar issue that is because on the client devices, there are local user accounts, which have a value set for "User cannot change password" or "Password never expires".
20062-082502.png

And the solution is on the client devices, open the Computer Management snap-in, and navigate to Local Users and Groups – Users. Please choose and double click the local user accounts and uncheck the User cannot change password and Password never expires options.
20039-082503.png

References
Windows 10 Compliance Policy settings


If the response is helpful, please click "Accept Answer" and upvote it.



082502.png (60.1 KiB)
082503.png (53.9 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.