Windows 10 Azure Domain Join

In this post i will cover how to join Azure AD. This is the current scenario i have configured. Keep in mind only Windows 10 1511 and new releases are supported. Adding a machine to Azure has its benefits. Some corporations have contractors and the contractors only require access to applications which can be housed in Azure. The key here is contractors don’t need access to the corporate domain and can be isolated to only resources they required which Azure is great for hosting.

  1. Lab domain
  2. Utilizing Azure AD Connect
  3. In Azure portal allowing devices to join
  4. Lab domain added in Azure AD and Azure AD connect synced

In this step im selecting Join Azure.

az1

Next I will enter global administrator account. It can be different but for this example im choosing the admin of my lab domain.

az2

It takes a few minutes to get the device ready.

az3

Devices with TPM chip you can set a pin. It will use MFA to validate via text, email or phone call.

az4

 

This is the next step to add a pin.

az5\

After Pin validation  i wanted to see what domain it was on. I prompted this error to show im in Azure AD.

az6

 

Now that we can successfully validate the Windows 10 machine has joined Azure AD lets go view it.

  1. From the Azure Administrator portal, you can view, block, and unblock devices. A device that is blocked will no longer have access to applications that are configured to allow only registered devices.
  2. Log on to the Microsoft Azure Portal as Administrator.
  3. On the left pane, select Active Directory.
  4. Select your directory.
  5. Select the Users tab. Then select a user to view their devices
  6. Select the Devices tab.
  7. Select Registered Devices from the drop down menu.
  8. Here you can view, block, or unblock the users registered devices.

 

az7

,

Post navigation

Leave a Reply

Your email address will not be published. Required fields are marked *