Forum Discussion
Join windows server 2019 to Azure AD
Is there an option or work around to join windows server 2019 standard to azure AD for authentication ?
20 Replies
Jeremiah Kibanga
Hello All,I believe that we couldn't do it on physical servers but we have a chance to do that on azure vm's
++Adding below doc for Ref:
https://docs.microsoft.com/en-us/azure/active-directory/devices/howto-vm-sign-in-azure-ad-windows
Hi All,
Been a whilst since I have had time to revisit this.
Had to remind myself again today how to do it.
I don't have an exact step by step document for you. But...
Start with this.
https://github.com/kkkgo/LTSC-Add-MicrosoftStore
I am presuming that if you are trying to join a server to Azure AD, then you should hopefully have access to an Intune license.
In which case assign a license to your user. Create a company portal.
Download and install the company portal from the Microsoft Store (yes you can get the Microsoft store working on windows server 2019)
There are some local group policy settings I had to play around with.
And some registry keys.
Login into the company portal admin website from the server you wish to add to azure ad.
https://portal.manage.microsoft.com/
Go to devices, follow the default settings through to add the device you are logged onto into the company portal.
That will then enable you to login to the server with an azure AD account.
It will also register the device as a device within Azure AD.
I don't have time to write this up fully now, but message me if you get stuck.
Cheers.
AzureMurphI also get 8018001c when attempting an aadj of Windows Server 2022. What group policies and registry settings should I look at?
I am attempting to complete this and am running into issues with an error 8018001C. Any thoughts?
The device shows in the AAD.
importsleyer Did you ever get this work? If yes, what did you try?
Yes there is.
The articles linked previously are for Virtual Machines that have been created within Azure.
I have managed to connect a Windows Server 2019 Standard machine, that is running as a VM on my local laptop, to Azure Active Directory.
It has connected over the internet the same as windows 10 operating systems do.
I can login with my Azure AD Account and manage it fully and apply policies to it.
I would not recommend this.
It involved getting the Microsoft Store Installed, at which point I could then login and associate my Work account to the device.
I could then install the company portal.
I can provide further details if required.
Hello Dear,
I couldn't find the work or school account in server 2019 and find the blow screenshot for your reference.
Server 2019 (hybrid with on-prem AD) can easily be AAD joined with GPO
Seb
- That's not AAD Joined, that's hybrid joined. You should know the difference.
AzureMurph That sounds like a solution i am looking for.. could you please share details how did you connect the AAD to your Windows Server 2019?
I get an error while connecting with the company portal
Craig635thank you i will give it a try
My VM is on-prem running in Hyper-V, so that is of little help...
Jeremiah Kibanga Na, not possible yet, something they say is on their roadmap.
https://feedback.azure.com/forums/169401-azure-active-directory/suggestions/32995456-support-azure-ad-domain-join-for-windows-server-20I would recommend you using AD Connect.
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/whatis-azure-ad-connect
https://www.microsoft.com/en-us/download/details.aspx?id=47594
Thanks
Dav,
