I have an MDT for 1809 and 1903 configured. When I push an 1809 deployment all works well and all policies get applied. When I push a 1903 deployment my GPOs don't seem to work. I have checked out everything and all seems to be in place. GPOs are the same for 1803 so it points directly to the 1903 setup. Has anyone else had issues like this? If I run a gpresult /H I realise that the Admin template do not appear. They only appear after a gpupdate /force.
An example of my issue is that when we deploy a device the computer object goes to a specific OU which keeps the local admin password. This is due to the autologin part of the MDT. Once this object moves to a different OU then the LAPS policy kicks in and changes the local admin password. With 1903 the LAPS policy kicks in and changes the password which then stops the MDT as its a different password than the password file. If I deploy an 1809 device then I have no problems at all.