From f4bc28bdeebcf6f19823a030eea974d529cea11a Mon Sep 17 00:00:00 2001
From: prk0ghy <52127333+prk0ghy@users.noreply.github.com>
Date: Thu, 5 Dec 2024 12:11:51 +0100
Subject: [PATCH 1/2] Add notice on account creation limitations.
---
windows/client-management/mdm/accounts-csp.md | 12 ++++++++++++
1 file changed, 12 insertions(+)
diff --git a/windows/client-management/mdm/accounts-csp.md b/windows/client-management/mdm/accounts-csp.md
index e32ee78e33e..454e9ea3a29 100644
--- a/windows/client-management/mdm/accounts-csp.md
+++ b/windows/client-management/mdm/accounts-csp.md
@@ -68,6 +68,18 @@ This node specifies the password for a new local user account. This setting can
Supported operation is Add.
GET operation isn't supported. This setting will report as failed when deployed from Intune.
+> [!WARNING]
+> The username is limited to 20 characters.
+
+> [!WARNING]
+> The user creation will only be successful if a sufficiently strong password is selected. Special XML characters must be escaped, i.e.:
+
+| character | escape sequence |
+|:---|:---|
+| `<` | `<` |
+| `>` | `>` |
+| `&` | `&` |
+
**Users/_UserName_/LocalUserGroup**
This optional node specifies the local user group that a local user account should be joined to. If the node isn't set, the new local user account is joined just to the Standard Users group. Set the value to 2 for Administrators group. This setting can be managed remotely.
From ae7f72702ad2455ebd7d06628b913812deb19bae Mon Sep 17 00:00:00 2001
From: Aaron Czechowski
Date: Thu, 5 Dec 2024 10:58:36 -0800
Subject: [PATCH 2/2] editorial revision
---
windows/client-management/mdm/accounts-csp.md | 26 ++++++++++---------
1 file changed, 14 insertions(+), 12 deletions(-)
diff --git a/windows/client-management/mdm/accounts-csp.md b/windows/client-management/mdm/accounts-csp.md
index 454e9ea3a29..2774e662442 100644
--- a/windows/client-management/mdm/accounts-csp.md
+++ b/windows/client-management/mdm/accounts-csp.md
@@ -54,7 +54,7 @@ Available naming macros:
Supported operation is Add.
> [!Note]
-> For desktop PCs on Windows 10, version 2004 or later, use the **Ext/Microsoft/DNSComputerName** node in [DevDetail CSP](devdetail-csp.md).
+> For desktop PCs on supported versions of Windows 10 or later, use the **Ext/Microsoft/DNSComputerName** node in [DevDetail CSP](devdetail-csp.md).
**Users**
Interior node for the user account information.
@@ -62,23 +62,25 @@ Interior node for the user account information.
**Users/_UserName_**
This node specifies the username for a new local user account. This setting can be managed remotely.
+> [!IMPORTANT]
+> The username is limited to 20 characters.
+
**Users/_UserName_/Password**
This node specifies the password for a new local user account. This setting can be managed remotely.
Supported operation is Add.
GET operation isn't supported. This setting will report as failed when deployed from Intune.
-> [!WARNING]
-> The username is limited to 20 characters.
-
-> [!WARNING]
-> The user creation will only be successful if a sufficiently strong password is selected. Special XML characters must be escaped, i.e.:
-
-| character | escape sequence |
-|:---|:---|
-| `<` | `<` |
-| `>` | `>` |
-| `&` | `&` |
+> [!IMPORTANT]
+> This string needs to meet the current password policy requirements.
+>
+> Escape any special characters in the string. For example,
+>
+> | Character | Escape sequence |
+> |:---|:---|
+> | `<` | `<` |
+> | `>` | `>` |
+> | `&` | `&` |
**Users/_UserName_/LocalUserGroup**
This optional node specifies the local user group that a local user account should be joined to. If the node isn't set, the new local user account is joined just to the Standard Users group. Set the value to 2 for Administrators group. This setting can be managed remotely.