Forum Discussion
mdayton11
Jan 22, 2022Copper Contributor
AVD sign-on issue Azure Hybrid joined devices
Hi, starting yesterday we have been having issues signing into AVD. We have a CA policy in place restricting only hybrid joined devices access, when accessing AVD we are presented with error "You cannot get there from here. This application contains sensitive information and can only be accessed from Company XXX. Company XXX domain joined devices. Access from personal devices is not allowed.
This only started yesterday evening.
- mdayton11Copper ContributorTo add it is seeing our hybrid joined devices as personal even though they are hybrid. I have ran dsregcmd /status and reports correct info.
- DBR14Iron ContributorSo we have 2 CA Policies, one that requires users to MFA to access AVD. It triggers at sign-in to the RDC. The other prevents the use of the RDC on machines listed as personal OR non-Compliant.
Since Thursday night this has been failing and stating the user satisfied the requirement but doesn't have permission. When checking the device in Azure AD or Intune/Endpoint the device is showing compliant. We've not changed anything on our end so there's clearly something Microsoft has failed to acknowledge.- mdayton11Copper Contributor
DBR14 I rang Microsoft this morning, after waiting 15 minutes for them to answer I gave up. It's now say with our CSP to try and work out what's happened. Nothing has changed our side either, for now though I've had to disable the Hybrid joined CA policy otherwise no one can login!