Active Directory options for WVD

Cristian Ruiz 191 Reputation points

I 'm starting to diging about WVD in order to implement a demo stage, and I'm wondering how to implement the AD option in order VMs can join to it.
I know that there is an option to use Azure AD Domain Services, and another option is to implement a VM domain controller in Azure (that may be it has a better cost effect for a small company).

About that DC, has to be an additional DC of the on-premise AD? or it has to be part of Other domain different of the on-premise one?


Azure Virtual Desktop
Azure Virtual Desktop
A Microsoft desktop and app virtualization service that runs on Azure. Previously known as Windows Virtual Desktop.
1,447 questions
0 comments No comments
{count} votes

Accepted answer
  1. Leon Laude 85,716 Reputation points


    You'll find the Windows Virtual Desktop (WVD) requirements over here:


    So in short, the Active Directory requirements are:

    Option 1:
    Domain controller that is synchronized with Azure Active Directory. The domain controller can be on-prem or in cloud. To synchronize with Azure Active Directory install Azure Active Directory Connect.

    Option 2:
    Azure AD Domain Services domain in Azure (automatically synced with Azure Active Directory)

    Best regards,

    1 person found this answer helpful.

2 additional answers

Sort by: Most helpful
  1. Cristian Ruiz 191 Reputation points

    Hello Leon,
    thanks for your reply.

    So for a company that already has their on-premise AD synced with AAD for Exchange Online use, What would be the best option for that case?
    It would be correct if they use a site-to-site VPN connection to use their on-premise DC for the WVD infrastructure, or in addition to the VPN implementation, Should they install an additional DC on Azure?

  2. Dan 176 Reputation points


    As you have mentioned above you would need a VPN in place. As long as the correct routing is in place, the WVD VMs will be able to join the domain.

    It is normally a good idea to deploy an additional DC into Azure but isn't required.

    You would also need to ensure that DNS is correctly setup.