-> In this blog we will create a login in Azure Virtual Machine Active Directory and Sync it to Azure Active Directory.
-> On Azure Virtual machine where Active Directory is configured. Click on Start -> Run -> dsa.msc.
-> Select appropriate options for password. I have selected below options as this is just a test setup,
-> Login to Portal.azure.com and open Azure Active Directory. Click on users and you will see below,
-> Lets synchronize the newly created login to Azure Active Directory.
-> On desktop where Azure AD is installed. Open Azure AD Connect,
-> Click on Configure and select “Customize synchronization configuration”,
-> Provide a login that has global administrator privilege and click on Next,
-> Login to Portal.azure.com and open Azure Active Directory. Click on users and you will see below,
-> Login is visible now.
Thank You, Vivek Janakiraman
Disclaimer: The views expressed on this blog are mine alone and do not reflect the views of my company or anyone else. All postings on this blog are provided “AS IS” with no warranties, and confers no rights.
-> Execute below code in powershell to make JBSDC as a domain controller,
Install-ADDSForest -DomainName “JBSWIKI.com”
-> Once you execute the above command in powershell, it will prompt you to enter the safemodeadministratorpassword.
-> Restart JBSDC and login to JBSDC.
-> Login to JBSDC will take some time and you will see below screen,
-> Start -> Run -> DSA.MSC. You can view “Active Directory Users and Computers” as below,
Deploy and Configure Azure Active Directory
-> Open Azure Active Directory from Azure Portal,
-> Click “Create a tenant”,
-> Open Azure Active Directory from Azure Portal,
-> In my case I will make “jbswikiad” as my default tenant by clicking on :Make default tenant”,
-> Click “Switch tenant”,
-> Click on “Users” and then click “+ New user”,
Login to Azure portal using login created above
-> Open a “New InPrivate Window” from edge or a “New Incognito window” from chrome and navigate to http://portal.azure.com/.
-> You will be prompted to change the password as below,
-> Change the password for your login as appropriate.
Assign “Global Administrator” role to your account
-> In my case I will assign account “vivek@jbswikiad.onmicrosoft.com” as a “Global Administrator” as I will use this account administrative purpose going forward.
-> In above screenshot, click on account “Vivek Janakiraman”. Click on “Assigned roles”,
Install AD Connect
-> Install AD Connect on a desktop. In our case I am installing it in JBSDC. AD Connect can be downloaded from this article.
-> We get below error,
The password has expired. Update your password and try again.
-> Follow step as specified in this article under “Login to Azure portal using login created above” to solve this error.
-> Once above error is solved, You might also get below error,
Please provide the Azure AD credentials of a global administrator.
-> Follow step as specified in this article under “Assign “Global Administrator” role to your account” to solve this error.
-> Once above step is followed, you will be able to move onto next step.
-> Provide an administrator login that can connect to the Active Directory in Azure VM and proceed further,
-> Click on Install.
-> We are done as of now.
Thank You, Vivek Janakiraman
Disclaimer: The views expressed on this blog are mine alone and do not reflect the views of my company or anyone else. All postings on this blog are provided “AS IS” with no warranties, and confers no rights.
