Forum Discussion

Pratik_Mishra's avatar
Pratik_Mishra
Copper Contributor
May 01, 2020

Domain Join Error while deploying HostPool

Hi Team,   We are getting error while deploying HostPool for Windows Azure Virtual Desktop. {"code":"DeploymentFailed","message":"At least one resource deployment operation failed. Please list dep...
Jeff_Bryant's avatar
Jeff_Bryant
Former Employee
May 01, 2020

Pratik_Mishra 

The VM's in the host pool must be Standard domain-joined or Hybrid AD-joined. Virtual machines can't be Azure AD-joined (in the future, AAD joined will be supported).  You will need to either deploy or use an existing Domain Controller, or leverage the Azure Active Directory Domain Services (AADDS, not to be confused with AAD) in order to do a Standard domain-join.

 

Please review the requirements for WVD:

https://docs.microsoft.com/en-us/azure/virtual-desktop/overview#requirements

 

To learn more about the different identity solutions used with WVD:

https://docs.microsoft.com/en-us/azure/active-directory-domain-services/compare-identity-solutions

 

-Jeff

 

Pratik_Mishra's avatar
Pratik_Mishra
Copper Contributor
May 02, 2020

Jeff_Bryant,

 

Sometimes its working fine as i tried to deployed it yesterday and it got executed successfully, But again i am getting the same error related to domain join. Is there any restriction for the azure test account which is causing the issue. 

 

Regards,

Pratik

  • Pratik_Mishra's avatar
    Pratik_Mishra
    Copper Contributor
    May 02, 2020

    Attaching error for you reference once again.

     

    Error: Code="VMExtensionProvisioningError" Message="VM has reported a failure when processing extension 'testext'. Error message: \"Exception(s) occured while joining Domain 'rupni.onmicrosoft.com'\"\r\n\r\nMore information on troubleshooting is available at https://aka.ms/vmextensionwindowstroubleshoot "

    on virtual_machine_extensions.tf line 1, in resource "azurerm_virtual_machine_extension" "domainJoin":
    1: resource "azurerm_virtual_machine_extension" "domainJoin" {

    • Jeff_Bryant's avatar
      Jeff_Bryant
      Former Employee
      May 04, 2020

      Pratik_Mishra 

      1. Did you deploy AADDS or did you create a VM to be your DC?

      2. Are you specifying the domain name and/or OU in the host pool template?  This is an optional step, but if the information entered is not correct, the domain join extension can fail even though you have confirmed the user account and password is correct.

      3.  Is the host pool VM on the same subnet as where the ADDS/DC is running?

      3. Are you able to join a VM to the domain manually? (create a VM, RDP to VM, join to domain from system properties)

      4.  The link in the error message below has some good steps to follow, including a review of the domain join logs which are on the VM.

       

      I would focus on making sure you can join a VM to the domain manually and consistently before trying to troubleshoot the domain join extension.  This will confirm that there are no networking related issues between the VM and the DC as well as confirm we are entering the correct domain name, username/password.

      • myusrn's avatar
        myusrn
        Copper Contributor
        Jun 07, 2020

        Jeff_Bryant 

        wrt q1 .  i deployed aadds

        wrt q2.   i'm specifying <domainname>.onmicrosoft.com should i just be specifying netbios<domainname> and not the fully qualified dns domain name?

        wrt q3.   i'm deploying hostpool to a separate vnet that has peer to peer network connection with aadds_vnet

        wrt q4.   i've successfully establishted a point to site vpn connection to vnet that wvd host pool vms are being deployed to and then successfully joined a localhost hyper-v hosted win10 install to that cloud aadds_vnet hosted azure ad domain services gc/dc pair using the sam vmjoiner@mydomain.onmicrosoft.com account i provided the wvd host pool template.

         

        given all that not sure what i do differently next to get my first wvd host pool deployment to succeed past the vm domain join step.

    • GR_C1pD's avatar
      GR_C1pD
      Copper Contributor
      May 03, 2020

      Pratik_Mishra I have the same issue. 

      I'm running an hybrid environment with AAD Connect. 

      This is my first VM on my Azure subscription. 

      It seems to work randomly. I have deployed with the same settings the Host Pool last week and I haven't received any error. 

      Since, I'm testing it. I have delete the previous deployment and started again. I have done following the https://docs.microsoft.com/en-gb/azure/virtual-desktop/virtual-desktop-fall-2019/tenant-setup-azure-active-directory 

       

      My error at the moment is : 

       

      {
  "code": "DeploymentFailed",
  "message": "At least one resource deployment operation failed. Please list deployment operations for details. Please see https://aka.ms/DeployOperations for usage details.",
  "details": [
    {
      "code": "Conflict",
      "message": "{\r\n  \"status\": \"Failed\",\r\n  \"error\": {\r\n    \"code\": \"ResourceDeploymentFailure\",\r\n    \"message\": \"The resource operation completed with terminal provisioning state 'Failed'.\",\r\n    \"details\": [\r\n      {\r\n        \"code\": \"VMExtensionProvisioningError\",\r\n        \"message\": \"VM has reported a failure when processing extension 'joindomain'. Error message: \\\"Exception(s) occured while joining Domain 'cipd.onmicrosoft.com'\\\"\\r\\n\\r\\nMore information on troubleshooting is available at https://aka.ms/vmextensionwindowstroubleshoot \"\r\n      }\r\n    ]\r\n  }\r\n}"
    }
  ]
}

Resources