Forum Discussion

Mtollex70's avatar
Mtollex70
Brass Contributor
Feb 20, 2020
Solved

OneDrive WVD and AAD

When first logging on to OneDrive with a new user in WVD, one of the final questions of the process are if you want to let your company administer this device or not. Theres also an option that says "This app only". What are the effects of letting the company administer this device, and what would be the best option for WVD "servers"? In Azure AD the VMs are listed multiple times with different user names as "Azure AD Registered". The WVD VMs are hybrid domain-joined. 

 

Anyone that can shed some light on this topic for me? Thanx in advance 🙂

  • WillSomerville's avatar
    WillSomerville
    Feb 21, 2020

    Mtollex70 Apologies, So you will need to ensure that your user sign in is configured as per my previous post.

     

    which is the only step left for you to configure as you have already configured your AD to Sync devices to Azure AD. 

     As long as your hybrid devices are appearing like so below then once you do the above work you shouldnt have an issue.

     

    So to clarify you should have the following.

    SSO configured for users accessing 365 resources such as onedrive etc.

    Device sync to Azure AD to establish that trust between device and services automatically instead of prompting users to register the device when they first go to sign in.

     

    Cheers

    Will

3 Replies

Sort By
  • WillSomerville's avatar
    WillSomerville
    Brass Contributor
    Feb 21, 2020

    Mtollex70 

     

    Hi, we had this issue until we also configured SSO for authentication along side hybrid ad devices. you will stop seeing these device registrations if the device is appearing as a hybrid joined device and the machine has the URL 

    https://autologon.microsoftazuread-sso.com 

    located in the Intranet zone the PC for Seamless authentication to work correctly. 

     

    having the above 2 configured should mean that this issue doesn't appear again for any of your users. 

     

    Cheers

    Will 

    • Mtollex70's avatar
      Mtollex70
      Brass Contributor
      Feb 21, 2020

      WillSomervilleOk, i will try. But you mentioned only one step, to have the address in the intranet zone on the VM, but what is the other? Maybe i misunderstood something.. 

      • WillSomerville's avatar
        WillSomerville
        Brass Contributor
        Feb 21, 2020

        Mtollex70 Apologies, So you will need to ensure that your user sign in is configured as per my previous post.

         

        which is the only step left for you to configure as you have already configured your AD to Sync devices to Azure AD. 

         As long as your hybrid devices are appearing like so below then once you do the above work you shouldnt have an issue.

         

        So to clarify you should have the following.

        SSO configured for users accessing 365 resources such as onedrive etc.

        Device sync to Azure AD to establish that trust between device and services automatically instead of prompting users to register the device when they first go to sign in.

         

        Cheers

        Will

Resources