Is it possible to join a local windows machine (on premises) to a Windows Server VM that is hosted on Azure Cloud?
I am setting up a Windows Server VM on Azure cloud and configure Active Directory Domain Services and Group Policy Objects. I am trying to join a local computer (on premise) to that Server and to apply the group policy that I configured on Windows Server VM. Would this be possible, or do I really need a on premises active directory server to join a local computer ?
It's possible, you can deploy ADDS server role, join domains and many other things on Azure as what you can do on-premise. In this case, you have to do three steps:
- Deploy a P2S or S2S VPN connection to make sure the connectivity between on-premise and Azure side. Refer to VPN Gateway.
- Deploy a DNS server and DC on Azure VM. Set the custom DNS servers on the Azure VNet as your custom DNS server private IP address and also make sure the DNS query on the local computer could resolve the DC Server. You could deploy the DNS server in Azure VNet before setting up a VPN connection so that the virtual network connection setting gets the update on all connections.
- Once the VPN is set up, you could join the domain.
Alternatively, you could use Azure AD to create an Active Directory domain in the cloud and connect it to your on-premises Active Directory domain. Azure AD Connect integrates your on-premises directories with Azure AD. In this scenario, you could have an on-premises Active Directory domain first.
Moreover, you could refer to this article to choose a solution for integrating on-premises Active Directory with Azure.
- Azure AD B2C error AADB2C90057 when I am NOT trying to use the implicit flow
- “That Microsoft account doesn’t exist” for Microsoft logins on Auth0
- You don’t have authorization to perform action 'Microsoft.Resources/deployments/validate/action'
- .Net Core - Use AzureAD/EntraID Authentication to Access Azure DevOps REST APIs
- How to use stored procedure parameters as dynamic content in copy activity using ADF
- Issue with Azure Automation Account and Key Vault Certificate Retrieval
- OpenAI remove key access while using AAD authentication
- Azure Tenant setup for .NET Blazor WASM calling Web API + Microsoft Graph
- Add tenant specific roles in Azure AD multitenant app
- Allow App Service to be called by just a test user and another App Service using a system assigned managed identity
- How to automatically refresh access token
- Access Token Issuer from Azure AD is sts.windows.net Instead Of login.microsoftonline.com
- How to get user's attributes from Identity in Blazor Server with organization authentication
- Correlation failed in net.core / asp.net identity / openid connect
- I'm unable to Login to VM with Azure AD user credentials
- I need to add co-organizer in teams meeting through graph api
- MSAL for non-SPA? Server side authentication?
- Entra ID - Adding actor claim to the token via client credential flow
- Roles for a SPA and API setup in Microsoft Intra ID
- Getting a token from Microsoft Intra ID with PostMan using MFA
- Unable to patch businessPhones of Entra External ID user, Insufficient privileges to complete the operation
- Add Azure Active Directory User to Azure SQL Database
- How to create dynamic groups in AzureAD/EntraID from a csv import?
- Creating a user in Azure AD B2C through Microsoft SSO
- Azured AD JWT authentication doesn't work for Web API hosted in docker using TestContainer
- How do I connect locally to Azure SQL database with Microsoft Entra ID registered app in C#?
- How to fix 'Unable to Obtain Authentication Token' in Active Directory Authentication to Azure Analysis Server
- Error OrganizationFromTenantGuidNotFound and 401 Unauthorized when Sending Email via Microsoft Graph API in React App
- Fetch employee id from from job description properties .NET 8
- How to check if a device is AD joined or Azure AD joined/registered?