I’ve been sitting on this topic for a while. I typically like to pass along information that helps people better understand Azure and other Microsoft products absent of my option. However, this post is slightly opinionated, an opinion that was formulated after seeing problems users ran into while trying to use Azure AD as a replacement for Windows AD.
Continue reading “Don’t Use Azure AD Domain Services to Replace Windows Domain Controllers”Azure Files SMB Access with Windows AD allows you to access file shares in Azure with NTFS access control. By default, that access won’t extend to an on-prem network over VPN or Express Route. This video shows how to extend access to an Azure Files share with Windows AD to an on-premises network using Private Endpoints.
Continue reading “Azure Files SMB Access On-premises with Private Endpoints”
Azure Files allows you to access file shares in Azure, but until recently use was restricted to RBAC permission. Azure Files SMB Access for Azure AD Domain Services is generally available and support for Windows AD is now in public preview. This video goes over how to enable Azure Files for SMB access secured with your on-premises Windows AD Directory Services.
Continue reading “Azure Files SMB Access with Windows AD”
In this video, I go over deploying Azure AD and configuring replication with an on-premises Windows Active Directory domain and Azure Active Directory. I review deployment options and how to synchronize passwords from Windows and Azure directory services. A server is deployed and joined to the Azure AD Domain Services domain and users source from Azure AD and Windows AD log in using same sign-on credentials.
Continue reading “Deploy Azure AD Domain Service and Join a Server to the Domain”
One unfortunate aspect of working with Windows Virtual Desktop is the inability to assign users to an Application Group based on group management. Microsoft has heard this complaint and an upcoming version of WVD portal management will include App Group access based on group membership. Until that is available, I created a script that should help.
Continue reading “Update an WVD Application Group Based on a Windows AD Security Group”