You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/virtual-desktop/deploy-azure-ad-joined-vm.md
+4-3Lines changed: 4 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -10,9 +10,10 @@ ms.topic: how-to
10
10
ms.date: 09/15/2021
11
11
ms.author: helohr
12
12
---
13
+
13
14
# Deploy Azure AD-joined virtual machines in Azure Virtual Desktop
14
15
15
-
This article will walk you through the process of deploying and accessing Azure Active Directory joined virtual machines in Azure Virtual Desktop. Azure AD-joined VMs remove the need to have line-of-sight from the VM to an on-premise or virtualized Active Directory Domain Controller (DC) or to deploy Azure AD Domain services (Azure AD DS). In some cases, it can remove the need for a DC entirely, simplifying the deployment and management of the environment. These VMs can also be automatically enrolled in Intune for ease of management.
16
+
This article will walk you through the process of deploying and accessing Azure Active Directory joined virtual machines in Azure Virtual Desktop. Azure AD-joined VMs remove the need to have line-of-sight from the VM to an on-premises or virtualized Active Directory Domain Controller (DC) or to deploy Azure AD Domain services (Azure AD DS). In some cases, it can remove the need for a DC entirely, simplifying the deployment and management of the environment. These VMs can also be automatically enrolled in Intune for ease of management.
16
17
17
18
> [!NOTE]
18
19
> Azure AD-joined VMs are currently only supported in the Azure Commercial cloud.
@@ -31,7 +32,7 @@ User accounts can be cloud-only or hybrid users from the same Azure AD tenant.
31
32
32
33
The following known limitations may impact access to your on-premises or Active Directory domain-joined resources and should be considered when deciding whether Azure AD-joined VMs are right for your environment. We currently recommend Azure AD-joined VMs for scenarios where users only need access to cloud-based resources or Azure AD-based authentication.
33
34
34
-
- Azure Virtual Desktop (classic) doesn't support Azure AD-joined VMs.
35
+
- Azure Virtual Desktop (classic) doesn't support Azure AD-joined VMs.
35
36
- Azure AD-joined VMs don't currently support external users.
36
37
- Azure AD-joined VMs only supports local user profiles at this time.
37
38
- Azure AD-joined VMs can't access Azure Files file shares for FSLogix or MSIX app attach. You'll need Kerberos authentication to access either of these features.
@@ -48,7 +49,7 @@ You can deploy Azure AD-joined VMs directly from the Azure portal when [creating
48
49
49
50
### Assign user access to host pools
50
51
51
-
After you've created your host pool, you must assign users access to let them access to their resources. To grant access to resources, add each user to the app group. Follow the instructions in [Manage app groups](manage-app-groups.md) to assign user access to apps and desktops. We recommend that you use user groups instead of individual users wherever possible.
52
+
After you've created your host pool, you must assign users access to let them access their resources. To grant access to resources, add each user to the app group. Follow the instructions in [Manage app groups](manage-app-groups.md) to assign user access to apps and desktops. We recommend that you use user groups instead of individual users wherever possible.
52
53
53
54
For Azure AD-joined VMs, you'll need to do two extra things on top of the requirements for Active Directory or Azure Active Directory Domain Services-based deployments:
0 commit comments