Share via

Domain users can not open virtual desktop application

Jeff Parker 25 Reputation points
2023-01-26T21:54:39.9966667+00:00

So I am missing something, but I can not figure out what it might be. I am guessing permissions

What I am trying to do is let a AAD domain user run an application from a browser. Right now I am just testing letting them use Wordpad so nothing super secret here.

So I have Host pool Set up Called TestAccess. Host Pool type Pooled, Load Balancer Depth First, Application Groups 2

I have Azure AD Authentication Set to RDP will Attempt to use Azure AD authentication to sign in.

I sign into the Azure remote desktop website get prompted for my authentication. I sign in and I see Wordpad there. I try to open it, and it tells me Oops we couldn't connect to wordpad, Sign in failed please check your user name and password and try again.

Ok I know My user name and password are correct.

Now if I Set to RDP WON'T Azure AD authentication to sign in. I get prompted and I can use the Administrator account on the machines when I set up the desktop and if fires right up. This is windows 11 enterprise virtual machines on the back side
I did Azure domain join on creation.

The other thing I can not log in with my Global Administrator account to those machines via RDP. I can with the machine administrator account. When I go to work groups it tells me it belongs to workgroup. However when I go to accounts, access work or school, it tells me it is on my domain and managed by my domain. I also go to Azure AD and I see the machines listed in devices.

We are also not hybrid we are entirely Azure AD. I am guesisng this is some permissions issue but I can not fire it out.

Azure Virtual Desktop
Azure Virtual Desktop
A Microsoft desktop and app virtualization service that runs on Azure. Previously known as Windows Virtual Desktop.
1,451 questions
0 comments
Accepted answer
  1. vipullag-MSFT 26,021 Reputation points
    2023-01-27T10:08:26.8333333+00:00

    Hello @Jeff Parker

    Welcome to Microsoft Q&A Platform, thanks for posting your query here.

    Based on the details shares, there could be two things missing:

    Please verify that you have assigned the Virtual Machine User role to those users that should access the host pool

    Ref document: https://learn.microsoft.com/en-us/azure/virtual-desktop/deploy-azure-ad-joined-vm#assign-user-access-to-host-pools

    Please check that you have set the “targetisaadjoined:I:1” rdp property on the host pool as described here:

    Ref document: https://learn.microsoft.com/en-us/azure/virtual-desktop/deploy-azure-ad-joined-vm#connect-using-the-windows-desktop-client

    Hope this helps.

    If you need further help on this, tag me in a comment.

    If the suggested response helped you resolve your issue, please 'Accept as answer', so that it can help others in the community looking for help on similar topics.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest