question

HannesBrunner-7495 avatar image
0 Votes"
HannesBrunner-7495 asked Reza-Ameri answered

When connecting to an Azure VM with AAD enabled, the accounts do not work

My assigned user accounts for admin and normal users from AAD are not accepted in a Windows VM. The following error messages occur in the event viewer on the VM:

AAD Cloud AP plugin call Lookup name name from SID returned error: 0xC00485D3

and

Http request status: 400. Method: GET Endpoint Uri: https://login.microsoftonline.com/<Removed>; Correlation ID: <Removed>


AzureAdPrt is NO


windows-10-generalazure-active-directoryazure-virtual-machines
· 4
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Are you able to login in the account using local account?
Try ping your tenant and see if it is reachable?
Are you able to enroll the device as a tenant to AAD?

0 Votes 0 ·

@Reza-Ameri
Q1: Yes
Q2: do you mean ping into the guest OS or ping out of the guest os? As I can connect with a local account that is probably anyhow unnecessary.
Q3: don't understand. I can assign AAD users in Azure as Administrator or normal users via IAM, but when I do, it does not help. What do yo mean by enrol device as tenant to AAD? Which device?

0 Votes 0 ·
Reza-Ameri avatar image Reza-Ameri HannesBrunner-7495 ·

Check event viewer and look into log files and see if there are any other error which might be helpful?

0 Votes 0 ·

@HannesBrunner-7495
Thank you for your post!

  • Are you able to share any documentation that you followed to enable your Azure VM with AAD? This way I can gain a better understanding of your issue.

  • From your comment, I understand you can sign into your VM using the local account you created during VM creation? But none of the AzureAD accounts are working with sign-in.

  • Have you looked into our Sign in to Windows virtual machine in Azure using Azure Active Directory authentication (Preview) tutorial to enabled AzureAD Authentication?


Any additional details or screenshots would be greatly appreciated.


If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.

0 Votes 0 ·

1 Answer

Reza-Ameri avatar image
0 Votes"
Reza-Ameri answered

In case your are not the Azure administrator, then ask the administrator to check the log files in the Azure and see if you see any relevant issue there?
Make sure you are able to connect to the VM remotely.
You may report this issue through the Feedback Hub app in Windows 10.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.