How join a Client machine with Domain Controller machine and login with AD Domain user as domain\user-name
In this article we are going to join the client machine with domain controller server and login with the AD domain user in Client machine.
In this Demo, I’ll be using below setup.
Perquisites:
- Azure Subscription
- Install and Configure Active Directory in Windows VM and Promote the server as Domain Controller in Azure VM Windows Server 2016 —
Note: Make sure to Install and Configure the Azure AD and Promote the server than only you’ll be able to create the user
Step 1: Go to Domain Controller server & Create a AD Domain User
Open Server Manager → Local Server → Tools → Active Directory Users and Computers
Right Click on the Domain → Users → New → User
Create the user as shown below and Click on Next.
Now Set the Password and then Next.
It would be showing like this and then finish.
Step 2 : Give Permissions to the user
User → Right Click → Properties
Properties → Member of
Step 3: Join the Client Server VM to the Domain Controller Server VM
Connect Client Server VM → Start → Server Manger → Local Server → Click on WORKGROUP
Now Click on Change
Now add the Domain name which we promote as a server in Domain Controller server and ok.
Ugghhh !! It may show the below error.
Let’s resolve this.
Open the below path in Client server vm -
Control Panel\Network and Internet\Network and Sharing Center and Click on Ethernet and Go to Properties
Now un-tik IPV6 and tik IPV4 and Click on Properties.
Now add the Private IP address of the Domain Controller VM and close it.
Now Again try to add the Domain.
Woohoo !! The Issue has been resolved.
It’s will ask to enter the AD Domain user credentials. Enter the Credentials of the user whom you want to join with this Client server.
Yeah ! Client server has been join with the monkgrowth domain.
Restart the Client server as required to apply the changes.
Meanwhile, verify the computer in Domain Controller Server. Server Manager → Tools → Active Directory Users and Computers — Client Server has been added to Domain Controller server.
Step 4: Again Login to Client server
This time we will be using the AD Domain user credentials which we created in Domain Controller server.
It will be throwing the error as “The Connection was denied because the user account is not authorized for remote login”
Go to Domain Controller machine and give RDP permission to user as we did in Step 2.
Now Go to Server Manager → tools → Click on Group Policy Management
Right Click on Domain -> Create New Organisation Unit and name as Networking
Right Click on Networking and Create new GPO
Name the Policy as “Remote Problem”
Right Click on Remote Problem → Policies → Windows Settings → Security Settings → Local Policies → User Rights Assignment → Allow Log on through Remote Desktop Services
Enable the checkbox and add the user.
Now add the authenticated users and Domain Users in object dialog box.
Apply → Ok
Open CMD and Run gpupdate /force command.
Again try to login into Client-server machine with AD Domain user.
Now verify → Settings → Account details
Wohoo!! We successfully setup & logged into the Client server with AD Domain User.
