Hi there,
I've got a generally question about deploying device profiles to windows 10 clients.Does endusers need local administrative rights to process device profiles, that i assigned to the devices?
Because some months ago, i talked with the support about the problem that device profiles are not been installed and they told me that this is normal behaviour. See Answer attached. You have to use an user account with local admin rights to process the profiles.
I think its a bad idea to provide any user local admin permission? So if this is really a normal behaviour we will focus on other MDM Software? Really weird and thanks in advantage!
Support Answer:
Hi Jonny, It was a pleasure speaking with you.
As discussed, It is recommend to have local admin privileges in order to make the windows profile installed effectively on the windows machines. As you mentioned, kindly login to machine with local admin privileges and enroll the device to make it work. If you observe that the profile not being installed kindly check login to machine using local admin privileges and it will work. I am glad I was able to assist you today. With your permission I will now proceed to archive this ticket.
*Push* Nobody has an idea about this? I Can't imagine that the big players with airwatch provide their users local admin privileges?