Demo Tenant: AAD cloud identities unable to log into ADDS, onprem devices

thtgrldiana 21 Reputation points

My Cloud identity, AAD users are not able to log in to my On-premises devices locally or with their AAD UPN. I am not sure how to add the ( users to allow for logging into the device. Is there a single or group of GPO configurations I may have overlooked. I'd love step by step or a link to the appropriate article(s). I have configured my Demo environment.

ADDS-with custom domain
Work station is Domain joined
Azure AD Connect configured for SSO and PHS sync using this article
Work station is Hybrid AD Joined in Intune
Workstation is configured for allow log on for my onprem user OU and the remote user group
I configured SSO using this article

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,482 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. 2020-07-23T18:59:38.34+00:00

    To login to HAADJ device, user has to be in the local AD which is the identity provider for hybrid devices. For cloud only users, they can sign in to AADJ machine.