Sign-In to OnPrem AD Computer with AzureAD User

gbrownz 

To allow the room resource account to sign in to the local AD computer, you can configure Azure AD Connect to synchronize the user account from Azure AD to your on-premises AD. This will allow the account to be recognized by the local AD as a valid user.

Here are the steps to achieve this:

1. In Azure Active Directory, create a user account for the room resource.

2. Assign a license to the user account if it doesn't already have one.

3. Install Azure AD Connect on a server in your on-premises environment.

4. During the installation, choose the option to customize the synchronization settings.

5. In the "Optional Features" section, select "Directory Extension Attribute Sync" and "Password Hash Sync".

6. In the "User sign-in" section, choose the "Password Hash Sync" option.

7. Proceed with the installation, following the prompts to configure the synchronization.

8. After the synchronization is complete, open Active Directory Users and Computers on your on-premises domain controller.

9. Locate the user account for the room resource and modify its attributes as needed (e.g., set the room capacity, set calendar permissions, etc.).

10. On the local AD computer, switch to the "Other User" sign-in screen.

11. Enter the user name in the format <AzureADUserPrincipalName>@<ADDomainName> (e.g., roomresource@contoso.local) and the password for the room resource account.

12. Sign in to the local AD computer using the room resource account.

By synchronizing the room resource account from Azure AD to your on-premises AD, you'll be able to use the same account for scheduling meetings in Office 365 and signing in to the local AD computer.