Connect
Ask Community
Ask the community
Ask Community
  • Home
  • macOS
  • Unable to Edit or Remove ADE-Created Local Admin Account on macOS Devices

Unable to Edit or Remove ADE-Created Local Admin Account on macOS DevicesSolved

Profile photo of raelynn
raelynn
Participant
Discussion
Hexnode UEM
5 days ago Jan 05, 2026

We are enrolling macOS laptops using Apple Automated Device Enrollment for our enterprise rollout. As part of the ADE profile, we have configured a local admin account for first-time setup. Now we have a few operational concerns. For already enrolled laptops, we want to manage or remove existing local accounts and also change the admin password used in the ADE profile for future enrollments. We are trying to understand whether these ADE-created accounts can be edited or deleted post enrollment, and what the recommended approach would be to avoid security or compliance issues going forward.

topic view count 17 Views

Tags

ADE (43) macOS (424)
Reply

Replies (3)

Marked SolutionPending Review
Profile photo of george Hexnode Expert image
george
Hexnode Expert
5 days ago Jan 05, 2026
Marked SolutionPending Review

Thanks for reaching out to Hexnode Connect with your detailing use case. I understand how important account control is, especially in large-scale deployments.

For devices that are already enrolled in Hexnode UEM, you can manage local user accounts from Manage > Devices > Local Accounts, where standard local users can be modified or removed as needed.

However, local accounts that are created as part of the ADE enrollment profile itself cannot be edited or deleted individually after enrollment. The ADE profile does not support modifying or removing those preconfigured accounts. For future enrollments, you can create additional local accounts, but existing ADE-created users remain unchanged.

I hope it clears the situation. Please feel free to contact us if you need any further assistance.

Best regards,
George
Hexnode UEM

Marked SolutionPending Review
Profile photo of raelynn Veteran image
raelynn
Participant
3 days ago Jan 07, 2026
Marked SolutionPending Review

Understood. If deleting the ADE profile is the only way to remove those existing accounts, would that cause any disruption to the already enrolled devices or impact management in any way? We want to be sure this does not introduce new issues before proceeding.

Marked SolutionPending Review
Profile photo of george Hexnode Expert image
george
Hexnode Expert
3 days ago Jan 07, 2026
Marked SolutionPending Review

Hello,

That is a valid concern. Deleting the ADE profile will not impact devices that are already enrolled or managed. However, it is currently the only method available if you need to remove the existing ADE-created local accounts entirely. At the moment, there is no option to directly edit or delete those accounts post enrollment.

I have forwarded this case to our engineering team, as we understand the operational value of being able to manage ADE-created local users more flexibly. We will keep you informed and update this thread as soon as there is any progress or change in the workflow.

Please feel free to reach out if you need assistance with alternative approaches in the meantime.

Best Regards,
George
Hexnode UEM

Load more
Save
Related Topics

Leaderboard

Profile photo of bram Pro image
bram
1705 pts
Profile photo of timo-liam Veteran image
timo-liam
1025 pts
Profile photo of boris Veteran image
boris
939 pts
Profile photo of jayceon Veteran image
jayceon
919 pts
Profile photo of wilma Veteran image
wilma
905 pts
View all

Popular Tags

ABM (41)
Android (411)
iOS (330)
macOS (424)
Windows (292)
Apple TV (28)
App Management (325)
Enrollment (85)
Location (26)
Kiosk (191)
Scripts (84)
ADE (43)
OS Updates (73)
Android Enterprise (117)
View all