Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
9,013 questions
ARM-Template Deploy Azure VM with Domain-Join to on-premise
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 59%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESV%3C/text%3E%3C/svg%3E)
Sam Val
0
Reputation points
Hello everyone,
I hope someone can help me with this as I've been struggling with this problem for quite some time now. I created a Microsoft case for this and after months of waiting, the Microsoft engineer was unable to come up with a logical solution. And I know it's possible, so I hope there are still experts here who can hopefully help me.
I know how to read an ARM template or Bicep, and let's keep ARM templates for the rollout I'm working on. I'm fairly new to this world, so I find it difficult to put together a complete ARM template.
What I would like is an ARM template that can easily create an Azure Windows 10 Pro vm with the latest image version, so that it is always up-to-date. This must be in an existing network and subnet without a public IP address. And in the same template he would eventually have to perform the domain-join to the on-premise domain via JsonADDomainExtension. I've already done a lot of tests, but I'm not getting any further.
Microsoft comes up with all kinds of weird scripts that no longer work, I managed to do it myself script-wise via PowerShell, but I just want it neat via an ARM template. And I really hope someone can help me with this.
FYI, I can join existing VMs via:
https://learn.microsoft.com/en-us/samples/azure/azure-quickstart-templates/vm-domain-join-existing/
But it's really about new VMs that have to be joined in the same ARM template in an automatic process.
Azure Virtual Machines
{count} votes
-
deherman-MSFT 38,021 Reputation points Microsoft Employee Moderator2023-03-01T17:20:00.4533333+00:00 @Sam Val
Happy to take a look and help. Could you attach the PowerShell script that is working for you minus any private info? That would be greatly appreciated! -
deherman-MSFT 38,021 Reputation points Microsoft Employee Moderator
2023-03-09T19:19:24.2+00:00 Are you still needing assistance with this? Can you provide the script you are currently working with?
-
Sam Val 0 Reputation points
2023-03-14T14:34:47.01+00:00 Im sorry, I didnt receive a notification, but I already managed it with PowerShell. My current goal is to achieve this via ARM template. Do you still want to see the teamplate I have so far?
-
Sam Val 0 Reputation points
2023-03-14T15:01:39.3+00:00 { "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#", "contentVersion": "1.0.0.0", "parameters": { "vmName": { "type": "string", "metadata": { "description": "The name of the virtual machine." } }, "existingVNetResourceGroup": { "type": "string", "metadata": { "description": "The name of the resource group that contains the existing virtual network." } }, "existingVNetName": { "type": "string", "metadata": { "description": "The name of the existing virtual network." } }, "existingSubnetName": { "type": "string", "metadata": { "description": "The name of the existing subnet." } }, "domainName": { "type": "string", "metadata": { "description": "The name of the domain to which the VM will be joined." } }, "domainJoinUser": { "type": "string", "metadata": { "description": "The username of an account with permissions to join the VM to the domain." } }, "domainJoinPassword": { "type": "securestring", "metadata": { "description": "The password of the account with permissions to join the VM to the domain." } }, "domainJoinOU": { "type": "string", "metadata": { "description": "The organizational unit (OU) where the VM will be placed after joining the domain." } }, "domainJoinRestart": { "type": "string", "defaultValue": "true", "allowedValues": [ "true", "false" ], "metadata": { "description": "Specifies whether the VM should be restarted after joining the domain." } }, "domainJoinOptions": { "type": "string", "defaultValue": "3", "metadata": { "description": "Specifies additional options for joining the domain." } } }, "variables": { "vmSize": "Standard_DS2_v2", "storageAccountType": "Standard_LRS", "osDiskName": "[concat(parameters('vmName'), '_os_disk')]", "existingVNetId": "[resourceId(parameters('existingVNetResourceGroup'), 'Microsoft.Network/virtualNetworks', parameters('existingVNetName'))]", "existingSubnetId": "[concat(variables('existingVNetId'), '/subnets/', parameters('existingSubnetName'))]" } }, "resources": [ { "type": "Microsoft.Compute/virtualMachines", "apiVersion": "2021-03-01", "name": "[parameters('vmName')]", "location": "[resourceGroup().location]", "dependsOn": [], "properties": { "hardwareProfile": { "vmSize": "[variables('vmSize')]" }, "storageProfile": { "imageReference": { "publisher": "MicrosoftWindowsDesktop", "offer": "Windows-10", "sku": "22h2-pro", "version": "latest" }, "osDisk": { "createOption": "FromImage", "managedDisk": { "storageAccountType": "[variables('storageAccountType')]" }, "name": "[variables('osDiskName')]" } }, "networkProfile": { "networkInterfaces": [ { "id": "[resourceId('Microsoft.Network/networkInterfaces', concat(parameters('vmName'), '_nic'))]" } ] }, "osProfile": { "computerName": "[parameters('vmName')]", "adminUsername": "[parameters('adminUsername')]", "adminPassword": "[parameters('adminPassword')]", "windowsConfiguration": { "enableAutomaticUpdates": true }, "secrets": [] } } }, { "type": "Microsoft.Network/networkInterfaces", "apiVersion": "2021-02-01", "name": "[concat(parameters('vmName'), '_nic')]", "location": "[resourceGroup().location]", "dependsOn": [], "properties": { "ipConfigurations": [ { "name": "ipconfig1", "properties": { "privateIPAllocationMethod": "Dynamic", "subnet": { "id": "[variables('existingSubnetId')]" } } } ] } }, { "type": "Microsoft.Compute/virtualMachines/extensions", "name": "[concat(parameters('vmName'), '/DomainJoin')]", "apiVersion": "2019-07-01", "location": "[parameters('location')]", "condition": "[not(empty(parameters('domainName')))]", "dependsOn": [ "[concat('Microsoft.Compute/virtualMachines/', parameters('vmName'))]" ], "properties": { "publisher": "Microsoft.Compute", "type": "JsonADDomainExtension", "typeHandlerVersion": "1.3", "autoUpgradeMinorVersion": true, "settings": { "Name": "[parameters('domainName')]", "User": "[parameters('domainJoinUser')]", "OUPath": "[parameters('domainJoinOU')]", "Restart": "[parameters('domainJoinRestart')]", "Options": "[parameters('domainJoinOptions')]" }, "protectedSettings": { "Password": "[parameters('domainJoinPassword')]" } } } ]
Sign in to comment
Sign in to answer