Hi all.
I have enabled login with AzureAD Credentials when setting up my vms but continue to have trouble logging in with anything other than the local admin account "Admin".
A little insight on my environment. Connecting to devices over the Azure VPN Client.
VM's only have private IPs. I have added other azure ad account access to the VMs by using the " net localgroup "Remote Desktop Users" /add "AzureAD\test@domain.com" In addition to that I have also edited the RDP client to include "enablecredsspsupport:1:0" and "authentication level :i:2". There isn't any NSG attached to the vm to interfere.
I can login with one azuread account but it is a global admin. It only works when using the the windows hello pin. When trying to use just the credential it fails to connect to the vm client over rdp or bastion. All azuread users have the "Virtual Machine User Login" added through IAM of the VM. These are Windows 10 2004 gen2 VMs. Login with AzureAD credentials was selected when creating the devices.





