Configuring Azure AD Domain Services

To integrate a legacy application based on NTLM and Kerberos authentication in an Azure IaaS scenario, we need to configure the Azure AD Domain Services. In this section, we will configure only the basic service and will integrate an active example application in a hybrid scenario.

The first step is to create a new group called AAD DC Administrators; the group needs to have this exact name. Afterwards, you need to add your administrator account admin@domain.onmicrosoft.com to the newly-created group.

Add the admin account as a member of the group.

Creating a virtual network

When enabling Azure AD Domain Services, ...

Get Mastering Identity and Access Management with Microsoft Azure now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Mastering Identity and Access Management with Microsoft Azure by Jochen Nickel

Configuring Azure AD Domain Services

Creating a virtual network

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly