Thank you so much! Glad you liked it!!

Happy to hear that! Thank you so much.

Glad you liked it! So nice of you and than you for your suggestions. I will definitely plan for it, but what exactly are you looking for?

Glad you liked it

It's a great question. If the on-premises AD has the same domain name and there is a trust setup between the on-premises Active Directory and Azure AD with proper whitelisting, it will work. It also work when you try setting up a point to site or site to site VPN and then try to connect and access both ways. With Azure AD Connect, you can synchronize users and groups with Azure AD, which is unidirectional, but the GPOs are not synchronized. Having said that, in this case also (as showcased in the demo) the on-premises AD GPOs will be applied to the Azure VM. The last question is not clear, but Azure Active Directory Domain Services (ADDS) is helpful in cases where there is no DC.

Thank you so much. Glad it helped.

You're most welcome. Glad you liked it!

So nice of you. Thank you so much.

Glad you liked it

Glad it helped!

Glad you enjoyed it!

Glad it was helpful!

Thank you!

Thanks, Mahender. It's a good question. Mail boxes are part of Exchange and Exchange is the part of M365 offering. The mail boxes can be configured there with proper IMAP or POP3 details. Once configured, it can definitely be used within Azure

Thank you so much!

Hi Jay, This is the public IP address of the frontend AzureADDS load balance server. Behind the load balancer there are two more managed servers with private IP address. I hope this is now clear.

Accept my apologies for the delayed response. To add and sync users from on-premises to Azure, you will need Azure AD Connect. It is a tool that you need to install on one of the servers on premises which is not a domain controller and then use it for synchronization. Here is the link to the tutorial - kzbin.info/www/bejne/n33Sg3xsptt-edE

Thank you! Cheers!

Please accept my apologies for the delayed response. I was not well. Coming to your question....can you please let me know what you mean by client machine. Is that a physical machine or a VM outside of Azure?

Yes, I can access my on-prem resources. It happens only when the VNG is setup properly. By the way ,what error do you get?

@@AzureTrainingSeries no error, I just wanted to know before I tried to set this up. Thank you !!

Thank you, Roberto for reaching out. Yes, when you create the Azure AD Domain Services, the resources like load balancers are automatically created and the load balancer has the public ip address.

Great suggestion! I can. Do you mean that users getting their domain id for logging into VM or something else?

@@AzureTrainingSeries sorry if my question is Dumb, lets say if i create a VM with server OS and a VM with client OS ( in Azure ) under same virtual network and NSG , is it possible to add this Client machine to Domain ( if i install ADDS in the Server machine and using its private IPS (example when I'm creating VMs getting IP for server is 192.168.2.3 and client is 192.168.2.4 ) and using the public IP as gateway when I change the IPs , and I'm losing the RDP connections just curious to know is this method work (the method simply how we join in normal situation client joining to DC )

Yes, you can do it. When you create a Virtual Machine, you can choose the OS, where one VM can have the Server OS and other VMs can have the Windows 10 OS as client. You can then install the ADDS on the Server VM. Then you need to change you VNet setting to use the custom DNS. After this, all your client VMs could connect to Server VM. Hope this helps.

Sure, I will.

Good question, Prabhu. Actually not. This is not a mandatory thing, but is needed when you wish to replicate your on-premises infrastructure to have all systems join the domain to have more control on users and groups having per missions to the system.

No Samikshya. You only need to configure Azure AD Domain Service just once. Post that, you can join any number of VMs to it.

Hi Marcin, I am really sorry for this much delay in responding back. I was travelling and kept away from work. For your question, that is a unique scenario, and truly speaking, I have not been in that situation. I just researched a bit and at some places it says that if you have a DNS service already running and the VM is already attached to the domain and you try to configure other DNS server, you will face such issues. There may also be the case that the VM was not properly removed from the domain previously, and that is the reason you see the domain as "workgroup", but adding the new domain is throwing error. Suggestion would be to create a backup of the VM to the data disk, create a new VM, attach the previous data disk, and finally add the VM to the domain. In the meanwhile, if you have already found a solution, do let me know. Hope this helps. Regards, Neeraj

In y case, I already had a custom domain name from GoDaddy. I used that. For adding a custom domain name to your Azure AD, you can add a public DNS zone and bring the domain to Azure for management or go to GoDaddy and manage DNS setting. Below are the two small videos for reference. 1. kzbin.info/www/bejne/jn2tp3SfZ86Ni80 2. kzbin.info/www/bejne/mnLWdGSOfdKBeZY Hope this helps

Hello Soujanya, it definitely is possible, but needs some tweaking to call the process. What exactly do you wish to achieve?

Thanks for watching the video. Yes, you need to have an Azure Active Directory tenant. Below link details out the pre-requisites for Azure AD Domain Services docs.microsoft.com/en-us/azure/active-directory-domain-services/tutorial-create-instance-advanced

For this you can use the Microsoft Azure Storage Explorer that you can download. When you open it, you will have to authenticate yourself which can be using Azure AD. This will fetch your subscription details. You can then work with storages. Hope this helps. In case I misunderstood your requirements, please let me know.

Can you please let me know where the service is failing and the exact error message you are getting?

@@AzureTrainingSeries on basic tab of Azure AD Domain Services, DNS domain name: Domain prefix restrictions: The prefix of your specified domain name (for example, contoso100 in the contoso100.com domain name) must contain 15 or fewer characters. You cannot create a managed domain with a prefix longer than 15 characters.

in my case it is 17 characters.

Yes, you are right. This is a new development I see that has come up. Thanks for bringing this up. Usually, longer TLDs or the prefixes are not preferred. Google also recommends shorter prefixes or TLDs for better indexing and search.

@@AzureTrainingSeries there is a workaround using Powershell: docs.microsoft.com/en-us/azure/active-directory-domain-services/powershell-create-instance I discarded the VM and deployed another VM from scratch allowing users login with Azure AD users.

Apologies for responding late. I was travelling. Can you please help me with below questions? What updates do you make on your DNS Server? Does your VM ever connect to the DNS Server and join the Domain?

Much appreciated! Thanks a lot.

First, please accept my apologies for a delayed response. Your question is not very well understood. Can you please elaborate more on this? From what I have understood, in case you wish to use only coding with JSON to do that, you can do it with PowerShell 5.1 commands. I have not done it personally, but the commands are available online to do it, and JSON can be used for parameterization. Hope this helps.

Did your task complete? Usually it should not take much time, but where did it get stuck?