HI @Lionel Ong
Regarding your question, there is no concern in using this image for domain controllers in Azure. In fact, it is recommended to use the HotPatch feature for your domain controllers as it provides automatic security patches without downtime.
HotPatch is a new way to install updates on supported Windows Server Azure Edition virtual machines that doesn't require a reboot after installation works by patching the in-memory code of running processes without the need to restart the process This process results in a VM that is always up to date and secure.
However, it's important to note that reboots are still required to install updates that aren't included in the HotPatch program. Reboots are also required periodically after a new baseline has been installed. These reboots keep the VM in sync with non-security patches included in the latest cumulative update. Patches that are currently not included in the HotPatch program include non-security updates released for Windows, and non-Windows updates (such as .NET patches). These types of patches need to be installed during a baseline month, and will reqmonth andoot**.**
I hope this information helps! Let me know if you have any other questions.
If this does answer your question, please accept it as the answer as a token of appreciation.