Hey everyone! We're in the process of transitioning from Hybrid Azure AD Join (HAADJ) to Azure AD Join (AADJ) and I'm looking for some advice. We have a few devices, mostly older laptops stored in our switch cabinets, that we need to manage remotely for tasks like Wi-Fi and network testing when users report issues. Currently, we have Remote Desktop Protocol (RDP) enabled on these machines, but I'm worried about potential issues when we go fully serverless. The AADJ laptops treat our corporate network as public unless we manually adjust settings, which blocks inbound RDP connections by default. I'm curious, how are others tackling similar situations in an AADJ setup? Remote support isn't much of a problem since we can guide users via Teams calls, but I'm looking for a more efficient way to manage these devices. I've seen a lot of discussions about Azure Virtual Desktop, but we don't require that type of setup. What's the best practice here?
1 Answer
You might be overcomplicating things. If your devices are stationary in the rack, consider just allowing RDP traffic through the firewall for all network profiles, including public. It simplifies things a lot!
Totally agree! Also, think about easing up on the password policies to speed up access when needed.