How to RDP from a local user computer to a AzureAD joined computer?

Question

Hey all, we're having difficulties with having a local user computer remote into an AzureAD joined computer.

They are on the same network.

We tried both IP address and hostname.

Username we've tried:

AzureAD\

User has Microsoft Business Premium license.

---

Moved from Microsoft 365 and Office | Other

Answer 1

To connect from a local user computer to an AzureAD joined computer using Remote Desktop Protocol (RDP), ensure the following steps are followed:

1. User Credentials: When prompted for credentials, use the format ******@domain.com for the username. Avoid using the AzureAD\ prefix, as this may lead to authentication issues.
2. Network Configuration: Ensure both the local computer and the AzureAD joined computer are on the same network and that the AzureAD joined computer is configured to allow remote connections.
3. Remote Desktop Users Group: Verify that the user account is added to the Remote Desktop Users group on the AzureAD joined computer. You can add users manually using the command:

      net localgroup "Remote Desktop Users" /add "AzureAD\<userUPN>"
   

   Replace <userUPN> with the user's UPN (e.g., ******@domain.com). You need to be a member of the local Administrators group to execute this command.
4. RDP Settings: Ensure that the Remote Desktop settings on the AzureAD joined computer allow connections from the local user. Check that Network Level Authentication (NLA) is configured correctly, as it may affect the ability to connect.
5. Testing Connectivity: If you continue to have issues, test connectivity using the Test-NetConnection cmdlet in PowerShell to ensure that the RDP port (default is 3389) is open and accessible.

If these steps do not resolve the issue, further troubleshooting may be required, focusing on network settings and firewall configurations.

---

References:

• Connect to remote Microsoft Entra joined device
• Add users to Remote Desktop Users group