Home

Pest Practices - Domain Controller & GPOs

%3CLINGO-SUB%20id%3D%22lingo-sub-905424%22%20slang%3D%22en-US%22%3EPest%20Practices%20-%20Domain%20Controller%20%26amp%3B%20GPOs%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-905424%22%20slang%3D%22en-US%22%3E%3CP%3EHello%20everybody%2C%3C%2FP%3E%3CP%3Ewe%20did%20some%20tests%20with%20the%20WVD.%20Generally%20everything%20works%20well%2C%20but%20I%20have%20a%20question%20regarding%20the%20domain%20connection%2C%20because%20I'm%20not%20a%20Azure%20specialist.%20In%20our%20tests%2C%20we%20connected%20the%20local%20domain%20to%20Azure%20via%20Azure%20AD%20Connect%20and%20enabled%20the%20Azure%20Domain%20Services%20to%20test%20WVD.%3C%2FP%3E%3CP%3ENow%2C%20how%20can%20I%20assign%20WVDs%20AD%20policies%20to%20this%20construct%2C%20or%20should%20it%20be%20better%20to%20install%20a%20domain%20controller%20in%20Azure%20and%20connect%20it%20to%20the%20local%20AD%3F%3C%2FP%3E%3CP%3EWhat%20is%20the%20best%20practices%20approach%3F%3C%2FP%3E%3CP%3EIs%20this%20described%20somewhere%3F%3C%2FP%3E%3CP%3EGreeting%20Marco%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-906106%22%20slang%3D%22en-US%22%3ERE%3A%20Pest%20Practices%20-%20Domain%20Controller%20%26amp%3Bamp%3B%20GPOs%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-906106%22%20slang%3D%22en-US%22%3EPlease%20review%20this%20article%20first%3A%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory-domain-services%2Fcompare-identity-solutions%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory-domain-services%2Fcompare-identity-solutions%3C%2FA%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-907159%22%20slang%3D%22en-US%22%3ERe%3A%20Pest%20Practices%20-%20Domain%20Controller%20%26amp%3B%20GPOs%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-907159%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F176419%22%20target%3D%22_blank%22%3E%40marco%20hartmann%3C%2FA%3E%26nbsp%3B%3A%20Adding%20on%20to%20Eva's%20response%2C%20please%20note%20that%20if%20you%20use%20Azure%20AD%20Domain%20Services%2C%20at%20the%20moment%20we%20only%20support%20user%20connections%20coming%20from%20cloud%20users.%20We%20do%20not%20support%20connections%20from%20users%20who%20were%20initially%20synchronized%20from%20on-premise%20(through%20Azure%20AD%20Connect).%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EWe%20are%20looking%20to%20support%20this%20scenario%20this%20month.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-908315%22%20slang%3D%22en-US%22%3ERE%3A%20Pest%20Practices%20-%20Domain%20Controller%20%26amp%3Bamp%3B%20GPOs%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-908315%22%20slang%3D%22en-US%22%3EHi%20Eva%2C%3CBR%20%2F%3EI%20will%20review%20the%20article.%3CBR%20%2F%3EThanks...%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-908326%22%20slang%3D%22en-US%22%3ERe%3A%20Pest%20Practices%20-%20Domain%20Controller%20%26amp%3B%20GPOs%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-908326%22%20slang%3D%22en-US%22%3EHi%20Christian%2C%3CBR%20%2F%3Ethanks%20for%20this%20important%20note!%3CBR%20%2F%3EIs%20this%20described%20somewhere%2C%20what%20works%20and%20what%20not%3F%3CBR%20%2F%3EGreeting%20Marco%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-909170%22%20slang%3D%22en-US%22%3ERe%3A%20Pest%20Practices%20-%20Domain%20Controller%20%26amp%3B%20GPOs%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-909170%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F176419%22%20target%3D%22_blank%22%3E%40marco%20hartmann%3C%2FA%3E%26nbsp%3B%3A%20We%20describe%20this%20in%20our%20Overview%20page%20here%3A%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Fvirtual-desktop%2Foverview%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Fvirtual-desktop%2Foverview%3C%2FA%3E%26nbsp%3B.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EHowever%2C%20we've%20also%20gotten%20feedback%20to%20add%20a%20%22Supported%20authentication%20scenarios%22%20to%20highlight%20this%20better%2C%20which%20we're%20looking%20at%20adding.%3C%2FP%3E%3C%2FLINGO-BODY%3E
marco hartmann
New Contributor

Hello everybody,

we did some tests with the WVD. Generally everything works well, but I have a question regarding the domain connection, because I'm not a Azure specialist. In our tests, we connected the local domain to Azure via Azure AD Connect and enabled the Azure Domain Services to test WVD.

Now, how can I assign WVDs AD policies to this construct, or should it be better to install a domain controller in Azure and connect it to the local AD?

What is the best practices approach?

Is this described somewhere?

Greeting Marco

5 Replies

@marco hartmann : Adding on to Eva's response, please note that if you use Azure AD Domain Services, at the moment we only support user connections coming from cloud users. We do not support connections from users who were initially synchronized from on-premise (through Azure AD Connect).

 

We are looking to support this scenario this month.

Hi Eva,
I will review the article.
Thanks...
Hi Christian,
thanks for this important note!
Is this described somewhere, what works and what not?
Greeting Marco

@marco hartmann : We describe this in our Overview page here: https://docs.microsoft.com/en-us/azure/virtual-desktop/overview .

 

However, we've also gotten feedback to add a "Supported authentication scenarios" to highlight this better, which we're looking at adding.

Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
38 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
13 Replies