After we success Enable & Configure Azure AD Domain Services next I will try to join a Windows Server to Azure AD Domain Services.
Before we do that we need create one VM as a client on Azure that use same V-net with Azure AD Domain Services.
Create the Windows Server virtual machine
Perform the following steps to create a Windows virtual machine joined to the virtual network in which you’ve enabled Azure AD Domain Services
1. Log in to the Azure portal at http://portal.azure.com.
2. Click the New button found on the upper left-hand corner of the Azure portal.
3. Select Compute, and then select Windows Server 2016. Choose Resource Manager as a deployment model then click Create.
- Configure the basic settings for the virtual machine on the Basics page of the wizard. For Authentication type I choose Password.
- Select a Size for the virtual machine. To see more sizes, select View all or change the Supported disk type filter.
- On the Settings page of the wizard, select the virtual network in which your Azure AD Domain Services managed domain is deployed. Pick a different subnet than the one your managed domain is deployed into. For the other settings, keep the defaults and click OK.
- On the Purchase page, review the settings and click OK to deploy the virtual machine.
- The VM deployment is pinned to the Azure portal dashboard.
- After the deployment completes, you can see information about the VM in the Overview page.
Connect to the Windows Server virtual machine using the local administrator account.
Now, connect to the newly created Windows Server virtual machine, to join it to the domain. Use the local administrator credentials you specified when creating the virtual machine.
Perform the following steps to connect to the virtual machine.
- Click the Connect button on the Overview page. A Remote Desktop Protocol (.rdp) file is created and downloaded.
- To connect to your VM, open the downloaded RDP file. If prompted, click Connect.
At the login prompt, enter your local administrator credentials, which you specified while creating the virtual machine. For example, we’ve used ‘.\alpha’ in this example.
You may receive a certificate warning during the sign-in process. Click Yes or Continue to proceed with the connection.
At this point, you should be logged in to the newly created Windows virtual machine using local Administrator credentials. The next step is to join the virtual machine to the domain.
Join the Windows Server virtual machine to the Azure AD Domain Services managed domain
Perform the following steps to join the Windows Server virtual machine to the AAD-DS managed domain.
- Connect to the Windows Server as shown in Step 2. From the Start screen, open Server Manager.
Click Local Server in the left pane of the Server Manager window. Click WORKGROUP.
- Under the PROPERTIES section. In the System Properties property page, click Change to join the domain.
- Specify the domain name of your Azure AD Domain Services managed domain in the Domain textbox and click OK.
- You are prompted to enter your credentials to join the domain. Ensure that you specify the credentials for a user belonging to the AAD DC Administrators group. Only members of this group have privileges to join machines to the managed domain.
- After domain join is successful, you see the following message welcoming you to the domain. Restart the virtual machine for the domain join operation to complete.
- Login using domain user.