Hey everyone! I'm working with an Active Directory VM running on Windows Server in Azure, and I'm trying to figure out how to join my local PCs to this AD domain. Is it true that a site-to-site VPN is the only way to do this? I haven't found much information to clarify, and English isn't my first language, so I'd appreciate any help with this.
If a VPN is necessary, could someone point me toward some resources or guides for VPN setup? Thanks a lot for your assistance!
3 Answers
Yeah, to connect your local PCs to the AD, a site-to-site VPN is indeed necessary. Direct connectivity is crucial for Active Directory to function correctly. Just curious, what do you need AD for in your setup?
You’re spot on! Setting up an Azure VPN is essential for linking the two networks. But on a different note, if you find managing a VM a hassle, you might want to explore Azure Entra Domain Services. It allows you to migrate your current AD and GPOs into a managed service, removing the need for a host VM. It could save you costs too—check out some YouTube videos for more insights on this option!
Joining directly via Intune could be an option if you're looking for a different approach! Just throwing that out there.
I don’t have any domain controllers yet, so I'd be starting from scratch. Does Entra Domain Services support the same level of Group Policies as AD DS, or is it limited? Can I use it without a previous domain controller? Thanks for your help!