MFA Conditional Access Policy Breaks AD Connect Synchronization

I ran into this issue today and sharing for anyone else that may run into the same problem.  The scenario is fairly simple, Azure AD Connect synchronizing to Azure AD.  All works fine until MFA policies were enabled, and then sync stops working.  Running a Sart-ADSyncSyncCycle returns a lot of red, but the basic are:

Continue reading “MFA Conditional Access Policy Breaks AD Connect Synchronization”

Deploy Azure AD Domain Service and Join a Server to the Domain

In this video, I go over deploying Azure AD and configuring replication with an on-premises Windows Active Directory domain and Azure Active Directory.  I review deployment options and how to synchronize passwords from Windows and Azure directory services.  A server is deployed and joined to the Azure AD Domain Services domain and users source from Azure AD and Windows AD log in using same sign-on credentials.

Continue reading “Deploy Azure AD Domain Service and Join a Server to the Domain”

Proximity Placement Groups and Accelerated Networking

Proximity Placement Group

In this video I go over the benefits of using Azure Proximity Placement Groups and Accelerated networking with Azure IaaS VM’s.  I start by explaining what Proximity Placement Groups are and how they work, then go over the basics of Accelerated Networking.  After that, I deploy a Proximity Placement Group and accelerated networking and compare results with and without the features enabled.

Continue reading “Proximity Placement Groups and Accelerated Networking”

Site-to-Site Azure VPN with a Windows RRAS Server

Azure S2S VPN

This video shows how I created a VPN connection between my home lab and Azure Subscription.  I used a Routing and Remote Access role on a Windows Server 2019 as the local endpoint.  This provides the ability to setup a VPN connection without special firewall hardware.  This is useful for home labs and small offices that need connectivity to an Azure subscription.  It also is helpful to walk through the setup to prepare for Azure certifications such as the AZ-103.

Continue reading “Site-to-Site Azure VPN with a Windows RRAS Server”

New! Azure Spot Virtual Machine

Azure Spot VM
Azure Spot VM

Azure Spot Virtual Machines are an IaaS server option offered at a deep discount compared to pay-as-you-go and Reserved Instance pricing.  This video walks through deploying the new Azure Spot VM’s with the Azure Portal.  The video also gives an overview of what Azure Spot VM instances are and some considerations to using them. 

Continue reading “New! Azure Spot Virtual Machine”

Automatically Start and Stop WVD VM’s with Azure Automation

One value proposition of any cloud service is consumption-based pricing, only paying for services when used.  Consumption-based pricing is an advantage of Windows Virtual Desktop (WVD), Microsoft Azure-hosted remote desktop service.  Or at least it would be if there was an easy way to start and stop session hosts based on demand.

Continue reading “Automatically Start and Stop WVD VM’s with Azure Automation”

Azure Windows Virtual Desktop Load Balancing

In this video, I go over the two options for WVD Load Balancing, Depth-First and Breadth-First.  I also demonstrate how each distributes new connections and how to change Load Balancing options and set the maximum number of connections per session host.

Continue reading “Azure Windows Virtual Desktop Load Balancing”

Create Application Groups, Publish Applications and Set Access in WVD

In this video, I go over how to create application groups in Windows Virtual Desktop.  Once created, I add start menu applications to the application group.  After that, I publish the applications to users by adding them to the Application Group.  I also demonstrate a script that will add users to a WVD Application Group based on a Windows AD Application Group.

Continue reading “Create Application Groups, Publish Applications and Set Access in WVD”