Hi there -
I have remote offices all over the world where we're trying to slim down on the footprint but not having local domain controllers or any physical servers. I have AzureAD setup and I can join machines to it remotely over the internet. It seems that when this is joined to AAD the user that registered it is the only one that is allowed to login to it. I had another forum question for this where they suggested we use AzureAD\UPN to login as a different user but that didn't seem to work.
Is this possible? Could I have remote machines that are not joined to an On-Prem DC, that can authenticate different users logging in locally (eg not RDP they're just sitting at a destkop)?