Devtestlab claim VMs issue

11215 6 Reputation points

I have two users, user A and user B, both are devtestlab role. why user A had claim the vm, and user B still able to browser connect to it?
If a person claim a VM and forgot to unclaim?
Other users all cannot claim it ? Even if a person claim , others still can login ?
Also is there a way to disable the All resources option for devtestuser role?

Azure DevTest Labs
Azure DevTest Labs
An Azure service that is used for provisioning development and test environments.
259 questions
0 comments No comments
{count} votes

5 answers

Sort by: Most helpful
  1. 11215 6 Reputation points

    Do you have any updates on this situation? it's been several days!!! I thought I made it very clear as you can see from the screenshots?

    1 person found this answer helpful.

  2. 11215 6 Reputation points

    can anyone forward any updates on this question?

    0 comments No comments

  3. srbhatta-MSFT 8,546 Reputation points Microsoft Employee

    Hi @11215 ,
    Thanks for posting your query on Microsoft QnA. Firstly, apologies for the delay in response.
    As you mentioned, both the users A and B have devtestlab role. Now, if user A has claimed a VM (let's say VM1), then the VM1 is removed from the 'Claimable virtual machines' section for both user A and B, and it is moved to user A's 'My virtual machines' section.
    Since user A has claimed VM1, user B will not be able to see VM1 under Claimable virtual machines anymore, and neither will he be able to see it under 'My virtual machines'.
    If one user has claimed a particular VM, no other user can claim it, unless the same user unclaims it and the VM is moved back to the Claimable pool of virtual machines. However, any user who has the .rdp file to the VM, and knows the username and password for the local administrator account (for the VM) can connect to the VM via rdp. This has got nothing to do with the VM claim. It's just that some user got hold of the rdp file and is using it to connect to the VM.

    Hope this clears your doubt.

    You can place your DevTest lab under one dedicated resource group, and then assign devtest user role to the users of your organization who will be accessing the lab environment. I think that will help?

    Please feel free to reach back for any questions you might have and I shall be happy to answer them.

    Please refer to the below screenshots of my lab for better understanding. I had created 2 users - 'Chris' and 'hibohra' in my own Azure AD and assigned them devtest user role. The DevTest lab consists of only 1 VM named vm-devtestlab, and the user 'Chris' has claimed the VM, so it shows under 'My virtual machines' section for him.
    Whereas, the user 'hibohra' did not claim any VM, so neither is he able to view the vm-devtestlab under 'Claimable virtual machines', nor is he able to view the VM under 'My virtual machines'. However, if 'hibohra' has the rdp file to the VM, he will be able to connect to it. Refer below.





    Please don't forget to 179759-accept.png and 179670-upvote.png if you think the information provided was useful so that it can help others in the community looking for help on similar issues.

  4. 11215 6 Reputation points

    even if a A claims the VM, B is still able to login to it, then how do I control ?

    0 comments No comments

  5. 11215 6 Reputation points

    Can I get any updates?