question

WardAnderson-0632 avatar image
0 Votes"
WardAnderson-0632 asked ·

Is it possible to have Windows 10 AzureAD joined machines allow different users to login?

Hi there -

I have remote offices all over the world where we're trying to slim down on the footprint but not having local domain controllers or any physical servers. I have AzureAD setup and I can join machines to it remotely over the internet. It seems that when this is joined to AAD the user that registered it is the only one that is allowed to login to it. I had another forum question for this where they suggested we use AzureAD\UPN to login as a different user but that didn't seem to work.

Is this possible? Could I have remote machines that are not joined to an On-Prem DC, that can authenticate different users logging in locally (eg not RDP they're just sitting at a destkop)?

Thanks,

Ward

azure-active-directory
10 |1000 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

PavelOtych avatar image
0 Votes"
PavelOtych answered ·

Hi, not sure I understand the question - all Azure AD users can logon to Azure AD joined machines, it works the same way as if you had local DC.

As for RDP, you can create a remote session without any issues from AAD machine to AAD machine. Sessions from non-AAD machines are doable but you need to disable Network Level Authentication on the AAD machine.

· Share
10 |1000 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.