I've stood up my first VM with the preview management options enabled to allow AAD accounts to login. But when I try to connect with the UPN that has the admin role assigned, I get "WE ARE UNABLE TO CONNECT RIGHT NOW, PLEASE CHECK YOUR NETWORK AND TRY AGAIN LATER".
Here are some factors:
--We do NOT have MFA required
--The host name shows "enabled" in the AAD devices
--The windows 10 workstation I'm using shows "enabled" in the AAD devices
--I am able to login with the local admin account
-- I get 200's when I run the curl commands recomended here: https://docs.microsoft.com/en-us/azure/active-directory/devices/howto-vm-sign-in-azure-ad-windows
-- looks like the version of the AAD agent that got installed is 0.4.1.1
-- I've tried AzureAD\email@example.com, firstname.lastname@example.org, UPN, SPN.
I know that this feature is in preview, but this would REALLY help us use Azure in a Production perspective to stay compliant.