Forum Discussion
Azure AD joined and DomainJoinedCheck faild
Hello, I created an Azure Virtual Desktop environment with a connection to Azure AD. But the session host is shown as unavailable in the environment. Inside the help checks: { ...
Thank you for the blog post.
I will delete the environment again today and recreate it based on your environment.
I will then report here.
With my creation, I have created the VM with the same.
I will delete the environment again today and recreate it based on your environment.
I will then report here.
With my creation, I have created the VM with the same.
In your blog you use two security principals (WVD HostPool and WVD Users). This are Azure AD Groups?
After going through the blog article, I had the problem for a few minutes. Nahc about 5 minutes the machine was available.
Thank you very much for your help.
Where I find the ""Network security: Allow PKU2U authentication requests to this computer to use online identities" " settings?
Stefan Kießig hi, may I ask how you solved the problem? I have the same problems with Azure Virtual Desktop as you.
- DavidBelanger
Microsoft
Stefan Kießig What error are you seeing when connecting?
- Thank you David. But there is still the login Problem. I can only login with local admin credentials but not with AAD credentials.
- DavidBelanger
Stefan Kießig Note that we noticed an issue where it can take up to 40 minutes after VMs are deployed for them to be marked as Available. We are investigating.
What error are you seeing when trying to connect? Definitely have a look at: https://docs.microsoft.com/azure/virtual-desktop/troubleshoot-azure-ad-connections
Thanks for your help.
I can not login to the Sessionhost with my Azure Credentials.
I see the maschien in my Azure Virtual enviroment. But I can only log in with localadmin credentials.- Those groups are AAD groups indeed.
for the PKU2U:
Local on the session host:
HKLM\SYSTEM\CurrentControlSet\Control\Lsa\pku2u -> confirm AllowOnlineID is set to 1
Via GPO:
GPO path: Computer Configuration\Policies\Windows Settings\Security Settings\Local Policies\Security Options
Policy: Network security: Allow PKU2U authentication requests to this computer to use online identities
State: Enabled
