Two good reports over the weekend about a newly-acknowledged bug in the Win10 1809 upgrade sequence. Günter Born: Windows 10 V1809: Upgrade deactivate
[See the full post at: Upgrading from Win10 1803 to 1809 may break the built-in “Administrator” account, but you probably aren’t affected]
![]() |
There are isolated problems with current patches, but they are well-known and documented on this site. |
SIGN IN | Not a member? | REGISTER | PLUS MEMBERSHIP |
-
Upgrading from Win10 1803 to 1809 may break the built-in “Administrator” account, but you probably aren’t affected
Home » Forums » Newsletter and Homepage topics » Upgrading from Win10 1803 to 1809 may break the built-in “Administrator” account, but you probably aren’t affected
- This topic has 15 replies, 8 voices, and was last updated 4 years, 7 months ago.
AuthorTopicwoody
ManagerViewing 6 reply threadsAuthorReplies-
b
ManagerDifficult to see why this is an issue for anyone in any circumstances, or even a bug at all:
The bug occurs when the following two conditions are met:
The built-in Administrator account is enabled (it is disabled by default).
There is at least one additional account with Administrator permissions.
https://www.ghacks.net/2019/01/02/windows-10-version-1809-upgrade-could-invalidate-administrator-account/The account is not disabled when the feature update is installed if there is no other administrator account. …
Personally, I would have said that’s the behavior I expected. (says Günter Born)
https://borncity.com/win/2019/01/02/windows-10-v1809-upgrade-deactivates-build-in-administrator/Windows 11 Pro version 22H2 build 22621.2361 + Microsoft 365 + Edge
-
Bluetrix
AskWoody MVP -
ch100
AskWoody_MVPThe built-in Administrator account was disabled during previous upgrades, unless the installation/upgrade in place was performed under the built-in Administrator account.
Nothing new here and it is not a bug, but done on purpose I believe, for the reasons stated by Woody in the main post, i.e. security enhancement, as this account is normally the only account not subject to UAC, at least on a computer not joined to an Active Directory domain.
Saying that, I generally tend to perform the OS upgrade under the built-in Administrator to avoid potential permissions bugs during the upgrade, but normally this should not be a pre-condition for a successful installation.3 users thanked author for this post.
-
warrenrumak
AskWoody Lounger -
ch100
AskWoody_MVP
-
-
EspressoWillie
AskWoody PlusI enable the Administrator account for all the machines at my location for when I need to do “admin” things that avoid changing the users desktop or other items like that. The Administrator account is only used by me when needed and is, of course, password protected.
1) If it disables the Administrator account, can it just be reenabled?
2) What do they mean “break”?
3) If I use the Administrator account to do the upgrade, does the regular user admin account that gets created during setup get disabled or “broken”?
4) I have renamed some of the Administrator accounts to something else for security purposes, just like I do on my servers. Do the same bugs apply?
Cheers!!
Willie McClure
“We are trying to build a gentler, kinder society, and if we all pitch in just a little bit, we are going to get there.” Alex Trebek-
b
Manager
anonymous
Guest-
b
Manager
Damian
AskWoody LoungerAll of our Win7 domain machines have the Admin enabled and password protected. This was a carry-over practice from the WinXP endpoints and it’s worked well for us. Just as the Domain Admin has a password, Endpoints have the Local Admin with a password. Unfortunately, we will be converting to Win10 this year but the practice will likely continue. I could’ve sworn there were ways to active the built-in Admin account during an offline state.
-
Damian
AskWoody LoungerI believe the best option is to password protect and then disable if you’re able to. We have a relatively small environment of 180 or so endpoints. There have been times where an endpoint has lost trust with the Domain and the built-in Admin account is needed to leave and rejoin. This can also happen when restoring a older image to an endpoint. I’m sure I’m not alone in this thought, nor am I solely right in my efforts. There’s always ten ways to accomplish everything in Windows. Thank you for your feedback, b.
2 users thanked author for this post.
-
b
ManagerThere have been times where an endpoint has lost trust with the Domain and the built-in Admin account is needed to leave and rejoin.
Yes, I’ve experienced that a few times. I wouldn’t suggest not having any local admin account available.
Windows 11 Pro version 22H2 build 22621.2361 + Microsoft 365 + Edge
1 user thanked author for this post.
-
b
ManagerI could’ve sworn there were ways to active the built-in Admin account during an offline state.
There are with physical access and the ability to boot from something like Offline Password and Registry Editor on CD/DVD/USB (although not if the system drive has disk encryption with that tool apparently), or Safe Mode.
Windows 11 Pro version 22H2 build 22621.2361 + Microsoft 365 + Edge
1 user thanked author for this post.
anonymous
Guestb
ManagerMicrosoft LAPS is a great solution for this and easily deployed.
I don’t see how Local Adminstrator Password Solution would prevent the built-in administrator getting disabled during an upgrade, as that’s an expected behavior (which is not password-related).
But isn’t it just for domains with Active Directory anyway? No use for small businesses or home users?
Windows 11 Pro version 22H2 build 22621.2361 + Microsoft 365 + Edge
Viewing 6 reply threads -

Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Welcome to our unique respite from the madness.
It's easy to post questions about Windows 11, Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced. Questions? Contact Customer Support.
Search Newsletters
Search Forums
View the Forum
Search for Topics
Recent Topics
-
Where is Windows Update?
by
bsfinkel
1 hour, 28 minutes ago -
mailwasher
by
jferr333
1 hour, 55 minutes ago -
Windows Photos
by
Linda2019
2 hours, 44 minutes ago -
OT QuickBooks payroll module not letting you efile 941
by
Susan Bradley
3 hours, 44 minutes ago -
MSA logins have been retired from DPC May 1st
by
Cormy1
3 hours, 41 minutes ago -
Administrator Lock
by
John Monge
7 hours, 42 minutes ago -
Skype cancels loopback audio
by
Steven
11 hours, 33 minutes ago -
Python re-installation
by
WSepzcaw
9 hours, 57 minutes ago -
Finally updated to Thunderbird 115
by
EricB
2 hours, 27 minutes ago -
Hard drive boot up problem in Windows AND Linux
by
rkacmar
19 hours, 33 minutes ago -
WSUS fails to download monthly Cumulative Update for Windows 11 Version 22H2
by
Bruce23
2 hours, 57 minutes ago -
Excel tone
by
WSmmi16
7 hours, 38 minutes ago -
Wait for the bugs to be worked out
by
Susan Bradley
14 hours, 6 minutes ago -
What Windows Really Needs [Pure OPINION]
by
RetiredGeek
6 hours, 20 minutes ago -
“Winmail.dat” attachments when email is sent from Outlook to Thunderbird
by
MrJimPhelps
22 hours, 30 minutes ago -
win 11 22H2 Memory itegrity error
by
krism
1 day, 5 hours ago -
McLaren Health Care 6TB data breach
by
Microfix
19 hours, 46 minutes ago -
Long Live the Red Envelope Era | Farewell to DVDs | Netflix
by
Alex5723
1 day, 8 hours ago -
Faststone Image Viewer updates
by
Alex5723
2 days, 11 hours ago -
Malicious ad served inside Bing’s AI chatbot
by
Alex5723
2 days, 11 hours ago -
win10 pro 22H2 current minus 1 mo,to, win11. suggestions…
by
krism
1 day, 23 hours ago -
Microsoft entered negotiations to sell Bing to Apple in 2020
by
Alex5723
2 days, 20 hours ago -
X CEO shows her iPhone’s Home Screen – and X isn’t there
by
Alex5723
2 days, 21 hours ago -
Keeping an older Mac secure
by
Susan Bradley
2 days, 21 hours ago -
Thunderbird – problem ”setting up existing email address”
by
stajourneyman
13 hours, 16 minutes ago -
Windows 11 Insider Preview build 23555 released to DEV
by
joep517
3 days, 8 hours ago -
Something didn’t go as planned KB5030310, KB 5030219
by
Donald Wyllie
1 day, 21 hours ago -
“Enhanced” search box
by
WSraysig
3 days, 9 hours ago -
Windows Ends Installation Path for Free Windows 7/8 Upgrade
by
Alex5723
3 days, 10 hours ago -
Icon text drop shadows latest Win 11 update
by
kenlcarter50
3 days, 4 hours ago
Recent blog posts
- Wait for the bugs to be worked out
- MS-DEFCON 4: Is Windows 11 really a disaster?
- Windows 11, Surface, and Windows Copilot
- Why File Explorer keeps me on Windows
- Uninstalr — “World’s best cup of coffee”
- Locked out of your refurbished computer?
- What happened to the manual?
- Apple zero days out – September 2023
Key Links
S | M | T | W | T | F | S |
---|---|---|---|---|---|---|
1 | 2 | 3 | 4 | 5 | 6 | 7 |
8 | 9 | 10 | 11 | 12 | 13 | 14 |
15 | 16 | 17 | 18 | 19 | 20 | 21 |
22 | 23 | 24 | 25 | 26 | 27 | 28 |
29 | 30 | 31 |
Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.
Mastodon profile for DefConPatch
Mastodon profile for AskWoody
Home • About • FAQ • Posts & Privacy • Forums • My Account
Register • Free Newsletter • Plus Membership • Gift Certificates • MS-DEFCON Alerts
Copyright ©2004-2023 by AskWoody Tech LLC. All Rights Reserved.