This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 21%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGA%3C/text%3E%3C/svg%3E)
Hi, just to give you a quick summary, we have hub & spoke topology and we use our custom DNS as primary and secondary for our VMs residing in different vnets/ subnets. However, for one of the VMs, we need to use Azure provided DNS (168.163.129.16) as a requirement for one of the processes on this machine. Now, when we try to rdp to this machine, we are getting: The remote computer that you are trying to connect to requires Network Level Authentication but your Windows domain controller cannot be contacted to perform NLA. If you are an administrator on the remote computer, you can disable NLA by using the options on the Remote tab of the System Properties dialog box. In order to get in to this machine, we had to disable NLA temporarily. Also, we are unable to ping other machines from this VM. Can I please get some advice / suggestion as what do we need to configure to make this work , private DNS zone or anything else? Many thanks
Just to update, we have managed to resolve the issue by creating the DNS forward zone in our own DNS server and by adding the required records. its all working fine now.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@Ghulam Abbas Glad to know the issue was resolved thank you for letting us know the solution.
Good to hear that all is working now 🫡
I'm glad that you were able to resolve your issue and thank you for posting your solution so that others experiencing the same thing can easily reference this!
Since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others", I'll repost your solution in case you'd like to accept the answer.
Issue:
Unable to RDP to the server with Azure-provided DNS
Hi, just to give you a quick summary, we have hub & spoke topology and we use our custom DNS as primary and secondary for our VMs residing in different vnets/ subnets. However, for one of the VMs, we need to use Azure provided DNS (168.163.129.16) as a requirement for one of the processes on this machine. Now, when we try to rdp to this machine, we are getting: The remote computer that you are trying to connect to requires Network Level Authentication but your Windows domain controller cannot be contacted to perform NLA. If you are an administrator on the remote computer, you can disable NLA by using the options on the Remote tab of the System Properties dialog box. In order to get in to this machine, we had to disable NLA temporarily. Also, we are unable to ping other machines from this VM. Can I please get some advice / suggestion as what do we need to configure to make this work , private DNS zone or anything else? Many thanks
Solution:
You've managed to resolve the issue by creating the DNS forward zone in your own DNS server and added the required records.
If I missed anything please let me know and I'd be happy to add it to my answer, or feel free to comment below with any additional information.
I hope this helps!
If you have any other questions, please let me know. Thank you again for your time and patience throughout this issue.