Remote desktop macOS client cant connect to azuread joined virtual desktop

Question

Remote desktop macOS client cant connect to azuread joined virtual desktop

Jack Challis 5

Using the macOS client for remote desktop to connect to an azuread joined virtual desktop. I can connect to the same virtual desktop using the user account on windows and web clients but not mac. Mac client can connect to admin account but not the user account as it states 'wrong logon' when it is indeed correct.

All devices are enrolled with Intune and registered in azure ad. MFA has been disabled. Only thing I can see that may be causing the issue is the flag on the RDP properties: enablerdsaadauth:1 (https://learn.microsoft.com/en-us/azure/virtual-desktop/configure-single-sign-on) but I get the same result if it is turned on or not.

Is it possible to connect to azure virtual desktop on the MacOS client using the assigned azure active directory user or not?

I would be grateful for any pointers.

Prrudram-MSFT 28,286 Reputation points Microsoft Employee Moderator

2023-04-05T18:42:13.7833333+00:00

@Jack Challis If an answer has been helpful, please consider accepting the answer to help increase visibility of this question for other members of the Microsoft Q&A community. If not, please let us know what is still needed in the comments so the question can be answered. Thank you for helping to improve Microsoft Q&A!
Andrejs Nozenkovs 0 Reputation points

2023-04-17T13:57:40.3866667+00:00

Hi!
My problem is related to this but not the same.
So I am facing the issue with RDP connection from macOS to Azure joined device.
Device is in Azure Virtual Desktop pool recently created. I can login via web client.
but using RDP client on macOS, i have faced some authentication issue. "The user account did not work". Picture below. I have checked rdp property targetisaadjoined:i:1 is in place.
"Virtual Machine User Login" assigned to a user on Desktop Poll resource group level.
Appropriate assignment is added to this user on Application group level.
What else can cause this problem?
Deleted

This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Bhanu Teja 0 Reputation points

2023-12-11T19:36:16.4366667+00:00

hey are you able to connect? can you please advise what you done if you are able to connect
Bhanu Teja 0 Reputation points

2023-12-14T02:55:25.56+00:00

Hey bro did you resolved the issue. I am having the same issues since last week. can you any workaround steps?
Radosław Paździerz 0 Reputation points

2024-01-17T21:58:23.2133333+00:00

Hi Andrejs, did you manage to address this issue? I'm also struggling with macos access to Azzure joined domain via RDP. Thanks in advance. Radek
Deleted

This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.

2 answers

Your answer

Prrudram-MSFT 28,286 Reputation points Microsoft Employee Moderator

2023-04-05T18:42:13.7833333+00:00

@Jack Challis If an answer has been helpful, please consider accepting the answer to help increase visibility of this question for other members of the Microsoft Q&A community. If not, please let us know what is still needed in the comments so the question can be answered. Thank you for helping to improve Microsoft Q&A!
Andrejs Nozenkovs 0 Reputation points

2023-04-17T13:57:40.3866667+00:00

Hi!
My problem is related to this but not the same.
So I am facing the issue with RDP connection from macOS to Azure joined device.
Device is in Azure Virtual Desktop pool recently created. I can login via web client.
but using RDP client on macOS, i have faced some authentication issue. "The user account did not work". Picture below. I have checked rdp property targetisaadjoined:i:1 is in place.
"Virtual Machine User Login" assigned to a user on Desktop Poll resource group level.
Appropriate assignment is added to this user on Application group level.
What else can cause this problem?
Deleted

This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Bhanu Teja 0 Reputation points

2023-12-11T19:36:16.4366667+00:00

hey are you able to connect? can you please advise what you done if you are able to connect
Bhanu Teja 0 Reputation points

2023-12-14T02:55:25.56+00:00

Hey bro did you resolved the issue. I am having the same issues since last week. can you any workaround steps?
Radosław Paździerz 0 Reputation points

2024-01-17T21:58:23.2133333+00:00

Hi Andrejs, did you manage to address this issue? I'm also struggling with macos access to Azzure joined domain via RDP. Thanks in advance. Radek
Deleted

This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.

Answer 1

Hello @Jack Challis

Thank you for reaching out to the Microsoft Q&A platform.

Yes, it is possible to connect to Azure Virtual Desktop on the macOS client using the assigned Azure Active Directory user. Most importantly to connect from MacOS, you need to set the custom RDP property targetisaadjoined:i:1 https://learn.microsoft.com/en-us/azure/virtual-desktop/azure-ad-joined-session-hosts#connect-using-the-other-clients

There could be a few more things that could be causing the issue you are experiencing. First, make sure that the user account you are trying to connect with has the necessary permissions to access the virtual desktop. You can check this by going to the Azure portal and navigating to the virtual desktop host pool. From there, select the "Users" tab and make sure that the user account is listed and has the appropriate permissions. Second, make sure that the macOS client is up to date and that you have installed the latest version of the Remote Desktop client for macOS. You can download the latest version from the Microsoft website. Finally, you mentioned that MFA has been disabled. It's worth noting that if you have configured a Conditional Access policy that requires MFA, you may need to use a strong authentication method such as Windows Hello to sign in to the virtual desktop. Regarding the RDP properties, the enablerdsaadauth flag is used to enable Azure AD authentication for the virtual desktop. If you are having issues with authentication, it's possible that this flag is not set correctly. You can try setting it to 1 using PowerShell to see if that resolves the issue. I hope this helps! Let me know if you have any further questions.
Please accept answer and upvote if the above information is helpful for the benefit of the community.

Answer 2

Hello Thank you for your question and reaching out. I can understand you are having query\issues related to Make sure you're using the correct credentials first if you keep getting an error message that states your credentials are invalid but you can't sign in. If you continue to receive error messages, confirm that you've met the following requirements: Have you given each user's virtual machine (VM) or resource group the role-based access control (RBAC) authorization for virtual machine user login? Do the multi-factor authentication requirements for the Azure Windows VM sign-in cloud application fall under your Conditional Access policy? Reference : https://learn.microsoft.com/en-us/azure/virtual-desktop/troubleshoot-client-macos --If the reply is helpful, please Upvote and Accept as answer--

Share via

Remote desktop macOS client cant connect to azuread joined virtual desktop

2 answers

Your answer