Reputation: 1227
Azure Domain Services
I've set up an azure domain services in a vnet, and already have a Win10 VM there. The DNS of the vnet was already updated successfully as well.
I would like to administer the domain with a specific account, "adadmin", which I created in my default Azure AD i.e. [email protected]. I added the account to the "AAD DC Administrators" group. However, i am unable to use the account to join the machines to the managed AD domain.
My understanding that creating the account after activating the domain services should allow creation of the NTLM hashes so the accounts can be used to manage the domain resources. Anyone encountered this issue during domain provisioning?
Upvotes: 1
Views: 136
Answers (1)
Reputation: 13974
My understanding that creating the account after activating the domain services should allow creation of the NTLM hashes so the accounts can be used to manage the domain resources.
You are right, we can use the members of the AAD DC Administrators group to add join machines to the managed domain, more information we can refer to this link
After you add users to that group, we should wait about 5 mins, and flush this machine, then use this account to add this machine to AAD DS.
Note:
Close system properties and re-open it, then use this account to join domain.
More information about join a Windows Server VM to AAD DS, please refer to this link.
Update:
As Roman said, re-create the AAD DS and change the password, fix this problem.
Upvotes: 1
Related Questions
- Question related to Azure Domain Services and on-premise domain
- Azure AD Self Service Group Management
- Azure Active Directory and Azure DevOps
- Creating Azure AD Domain
- sync active directory domain services (ADDS) and azure active directory (AAD)
- Azure Active Directory configuration
- Azure using enterprise Active Directory
- Azure Active Directory Domains
- Azure Active Directory Login
- Using Active Directory with Microsoft Azure