Azure AD error message when I try to connect my VM win 10 to my VM Server 2019 local domain

Dazzling-rain 6 Reputation points
2021-04-07T13:32:27.643+00:00

First time poster on this forum, I am a beginner.

I have am trying to connect my windows 10 Vm to the root domain I have created on my Windows server 2019 Vm. When I entered in the name and password to an account with permission to enter the domain I got this error:

"This device is joined to Azure AD. To join an Active Directory domain, you must first go to settings and choose to disconnect your device from your work or school"

When I entered settings --> Accounts there is no option for me to disconnect Azure AD. When I enter "work access" I am able to sign in to Azure AD. I am a student and the vm is connected to my student account. Should I disconnect from the student domain? When I press the "disconnect from the organization" I get a message that I will no be able to sign in to this PC with your organizations account.

Any help will be appreciated.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,664 questions
0 comments

6 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Reiff Lorenz 131 Reputation points
    2022-02-03T15:51:43.537+00:00

    I had a similar problem when joining an Azure VM Windows 2022 Server to an Azure-based Active Directory domain. It said the server was already joined to the Azure AD.

    "This device is joined to Azure AD. To join an Active Directory domain, you must first go to settings and choose to disconnect your device from your work or school"

    But the system properties just showed the machine as part of a Workgroup. there was nothing to disconnect from.

    The solution was to run DSRegCmd /Leave from an administrator command prompt. Then I could add the server to my Azure AD.

    24 people found this answer helpful.
  2. Arnel Joaquin 15 Reputation points
    2023-03-09T17:00:39.8+00:00

    Thanks Reiff and Casonguay,

    The solution was to run DSRegCmd /Leave from an administrator command prompt and added global admin to the AAD DC Administrator group.

    Then able to join domain ok.

    2 people found this answer helpful.
    0 comments
  3. Castonguay Olivier 5 Reputation points
    2023-03-03T19:03:47.3+00:00

    You need to be added in the AAD DC Administrator group associated to the Managed Azure AD Domain Services domain. The group name can be found in the Properties section of the Azure AD Domain Services ressource.

    The other thing that might work is to initiate a password reset using SSPR or initiate a full password hash sync using Azure AD Connect depending on your environment configuration.

    Make sure to wait for the next sync to be completed for these changes to be synchronized on your managed domain.

    1 person found this answer helpful.
    0 comments
  4. James Hamil 22,086 Reputation points Microsoft Employee
    2021-04-07T21:36:54.197+00:00

    Hi @Dazzling-rain , unfortunately student accounts limit certain Azure features. If you disconnect from the student account this should work properly. Please let me know if you have any questions.

    Best,
    James

    0 comments
  5. Ravi Pudi 1 Reputation point
    2022-09-23T04:08:30.04+00:00

    Thanks, exactly what I needed for a Azure Virtual Desktop machine which refused to join the domain.

    0 comments