On Premise Server Using Azure AD?

Joshua Porter 20 Reputation points
2024-05-14T11:16:43.18+00:00

Hi,

I've recently purchased a server running 2022. My plan with this is to run VM's for RDS users.

We currently run an Azure only estate where we have Azure AD running all our computers & email logins etc.

I need help understanding how I can use my existing logins with Azure to have users remote connect to my RDS server using their current Azure AD login.

Currently my new on prem server does not have an DC and ideally I'd not like to have a local domain.

I have an Entra domain setup and configured, but from what I've read online there doesn't seem to be a single way to connect it to that domain. I was expecting a VPN or something which would allow it or Azure Arc. Is there no way?

I've seen a lot of people use Azure AD Connect, but all the information I can find it on is that it's using the local DC to connect and I want to be able to have all my accounts managed through Azure AD and 365 still rather than the on prem server.

Please can someone suggest a way I do this?

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,305 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,000 questions
Microsoft Entra
{count} votes

Accepted answer
  1. Fabio Andrade 725 Reputation points Microsoft Employee
    2024-05-14T22:00:47.33+00:00

    Hi @Joshua Porter

    Thanks for reaching out to Microsoft Q&A.

    Unfortunately, you can't sign in to a Server 2022 or a VM in it using your Entra ID account.

    In order to sign in with the device using such credentials, you'd need to Entra ID Join the device. You can actually do it with a server OS, but only for management purposes (i.e. Intune).

    Recently, Microsoft has enabled such feature for Virtual Machines and Server OS, but only for Azure VMs as the prerequisites table below describes:

    https://learn.microsoft.com/en-us/entra/identity/devices/concept-directory-join

    User's image

    If using Azure VMs is not an option for you, you will need to have on-premises credentials either by using AD or local ones.

    Let me know if you have any questions.

    Thanks,

    Fabio


0 additional answers

Sort by: Most helpful