Event banner
Event details
Are Cloud PC's setup with Azure AD Join option (instead of Hybrid AADJ) and connected to a pre-existing Azure vnet using ANC able to use resources like file servers, Azure Files, and other systems the same as if they were HAADJ? Im trying to understand the benefit of using AADJ if you already have a domain controller and other servers running in an Azure VNet and need the Cloud PC's to access those systems.
EricOrman
Microsoft
MicrosoftGreat question, there is a couple different ways to think about this. Are your physical PC's all HAADJ or AADJ? The value of AADJ is that it decouples and reduces the need to maintain on-prem infrastructure, so simplification is a huge reason. The other is PC's don't need line of sight to the AD domain controller, this is a huge advantage for physical PC's that are off your work network so alignment on domain join is a reason along with agility to roam anywhere as long as device has internet connection. Hope that provides some reasons, it really boils down to flexibility and simplification.
- Thank you. I guess in a scenario where the Azure vnet already has a domain controller VM and a file/SQL server, as an example, if I strictly AADJ the Cloud PC's, will they be able to access all these server resources properly as if they were joined in the classic AD join method? I would assume yes but please clarify if I am incorrect. I know that using AADJ may affect the use of Group Policy on the Cloud PC. (seperate item and I know that Intune can apply policies as needed to replace classic Group Policies). Thanks