How run windows services as the current user when my laptop is Azure AD joined?

YB 30 Reputation points
2023-02-06T18:36:56.22+00:00

How run windows services as the current user when my laptop is Azure AD joined?

As my laptop is in the workgroup, I can not recognize my user on the system.

Examples of services like Microsoft Dynamics Business Central Service or any other service.

Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
5,285 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,946 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,292 questions
{count} votes

5 answers

Sort by: Most helpful
  1. Limitless Technology 44,211 Reputation points
    2023-02-07T16:07:07.82+00:00

    Hello,

    You may need to actually recreate the local account, as no such will exist if you join the device to AAD via the OOTB experience.

    If the local account exists (or creating it the "old way" through Users and Computers console), the COMPUTERNAME\Username format will not work anymore. You will need to use either .<Username> or local<Username>

    --If the reply is helpful, please Upvote and Accept as answer--


  2. YB 30 Reputation points
    2023-02-10T16:56:17.3133333+00:00

    @Limitless Technology do you have any another idea?

    0 comments No comments

  3. GonWild 426 Reputation points
    2023-04-20T12:56:40.2266667+00:00

    I have the same question and scenario. SSO to onprem stuff, fileshare, webapps and such..works with the logged on user. But it seem that using this user to authenticate via the services console for the service in question, does not work. It wants to resolve against onprem AD which it cannot see here...probably because client is only a member of AAD, even though I have line of sight to OnpremAD.

    0 comments No comments

  4. Sandeep G-MSFT 18,441 Reputation points Microsoft Employee
    2023-04-27T08:08:56.01+00:00

    @YB

    To run Windows services as the current user in an Azure AD joined device, you can follow the steps below:

    Open the Services console by typing "services.msc" in the Run dialog box or the Start menu search box.

    Locate the service that you want to configure and right-click on it. Select "Properties" from the context menu.

    In the Properties dialog box, select the "Log On" tab**1**.

    Select the "This account" option and enter the current user's credentials in the "User name" and "Password" fields.

    Click "Apply" and then "OK" to save the changes.

    Restart the service for the changes to take effect.

    By following these steps, you can configure a Windows service to run as the current user in an Azure AD joined device. Note that this approach may not be suitable for all services, and you should carefully consider the security implications of running services as a user account.

    Let me know if you have any further questions.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.


  5. Hamato Yoshi 5 Reputation points
    2023-07-13T10:27:43.9266667+00:00

    I have the same issue. As others have said, the solution provided by allows me to enter my user credentials in the <domain>slash<SAMAccountName> format, but the service won't start and I get "Error 1068: The dependency service or group failed to start." There are no dependencies listed in the service properties.

    Each time I try to start the service I also get NETLOGON Event 3095 "This computer is configured as a member of a workgroup, not as a member of a domain. The Netlogon service does not need to run in this configuration."


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.