Jul 21 2023 07:11 AM
A user is not able to login to any AAD joined Azure Virtual Desktop, getting user/password error.
1. I have reset his password multiple times.
2. Access has been granted and confirmed as everyone else in his team is able to login to the same environment.
3. I tried to temporarily disable the MFA but still same error.
4. He has tried both web browser and remote client app.
5. I assigned him a different AVD that didn't help either.
Does anyone know what the problem could be?
Jul 21 2023 08:43 AM
Jul 21 2023 08:57 AM
@TomWechsler Thank you for the reply, however the issue is not with the AVD since everyone else in the same security group is able to login without any issue and that particular user gets the same error on other AVD VMs too.
Jul 31 2023 10:53 AM
Jul 31 2023 05:33 PM
Would suggest isolating the problem by login same workstation using different account, login different workstation, etc. and take a look at logs such as sign-on logs under AAD for more hints
Aug 09 2023 07:15 AM
Aug 09 2023 08:00 AM
Aug 09 2023 08:01 AM
Feb 25 2024 09:42 PM
Aug 25 2024 09:08 PM - edited Aug 25 2024 09:12 PM
About the posted error, "Sign in failed. Please check your username and password and try again", double-check your role assignments. If your session hosts' virtual machine(s) is "Microsoft Entra ID joined", ensure that you have assigned the following two roles at the Resource Group level:
1. "Virtual Machine User Login" - assign this to the AVD users (or Users' group)
2. "Virtual Machine Administrator Login" - assign this to the AVD admins (or Admins' group)
Also, ensure your desktop application group is associated with the two personas (users & admins groups).
Something I noticed is that MFA conditional access (CA) policy does not affect the AVD sign-in. At least in my case.