Forum Discussion
Cannot assign any users to hosts in host pool.
Dear Team, I have just created the Windows Virtual Desktop, with Host Pools and Application groups. I managed to login to one of two machines successfully with local account that I have declared...
Is this an hybrid hostpool or AAD hostpool?
In case of AAD hostpool are your users Hybrid?
Did you assign the users with the Virtual Machine user login role?
In case of AAD hostpool are your users Hybrid?
Did you assign the users with the Virtual Machine user login role?
Those machines were build entirely in Azure. The users that I have tested are both AAD users, and guest users from another directory.
One of them is a owner for the entire subscription (where the Host Pool is build).
While creating this Host Pool there was an option to join AD or AAD. I have selected AAD.
I`m not sure it this might be related to missing privilege's for Virtual Machine user login for two reasons. Assigning the users option is grayed out for me before I select any user. So target user that I would like to assign seem to be irrelevant. Also, in our infrastructure we have an old version from 2018 (maintained from PowerShell) that is working perfectly fine, and the same users can login to old VDI machine without any issues just as all necessary permissions were in place.
In great many tutorials that I saw, documentations, and step-by-step instructions people are skipping assigning user step entirely and stop after those "assignments" from Application Development Group - and all seem to be working fine (in you tube tutorials 😉 )
- Is this a personal hostpool. If yes what assignment type did you pick?
Did you adjust MFA for that user? Most of the issues come from the MFA and conditional access.Johan_Vanneuville
Thank you for your question, it was a great hint to play around the MFA.
I tried to check the MFA options, I have tested possible configurations that I found on AAD->Users->Per user MFA configuration. Also I checked if there are no Conditional access set up in our environment that could affect it.
Unfortunately - no luck.
After all I think MFA seem to be ok in terms of providing an access. It is allowing me to connect to another host pool (deployed prior to 2018). So probable cause of missing access might be un-related to MFA.
You also asked about the type of deployment - it was "pooled" if I remember correctly. So the VDI is not dedicated to single user - it should be dedicated to whole group.
When it comes to assignment method - I did not change any thing -it should be still set up a default.
