RDP’ing onto Azure Active Directory joined PC from Azure AD joined PC just works perfectly fine, but as soon as we try remote desktop connection from non-Azure AD Joined PC/Laptop or Active Directory joined PC with same login doesn’t work.
The actual fix (for this scenario for me at least) was to add a line of configuration in the RDP File and that is explained as below.
Step 1: Change System Setting on Azure AD Joined PC:
On the computer you intend to RDP to, set the Remote Desktop settings to Allow Remote Connections to this computer and Remove the checkbox from Allow connections only from computers running Remote Desktop with Network Level Authentication enabled as shown here.
Step 2: Change Config File Settings on Remote Desktop Connection:
On the computer you intend to RDP from, Open Remote Desktop, click on Show Options.
Save As that connection to the desktop
Right click and Open with Notepad or Notepad++
Verify that the following two lines are present, if not, add them and Save it. This will open the session directly to that user’s machine’s login page. Use users email and password as Azure AD Account is tied to email account.
- enablecredsspsupport:i:0
- authentication level:i:2
If however you are connecting from say, a Workgroup joined (non Azure AD joined) device then the login experience will be different, enter your username as:
AzureAD\<[email protected]>
where <[email protected]> is your full User Principal Name of your AzureAD user.
Recommended Reading:
- https://www.niallbrady.com/2017/08/23/how-can-i-rdp-to-an-azure-ad-joined-windows-10-device/
- https://docs.microsoft.com/en-us/windows/client-management/connect-to-remote-aadj-pc
Related Posts:
Azure DNS SLA: Updated to 100%:
Azure DNS is now being offered at a 100% availability SLA that’s backed by our diverse, geo-redundant DNS infrastructure.
Backup Synology NAS to Azure Cool Storage:
Data is not only the core of any business but also a significant asset for all users. Important files -like critical work documents or personal photos- deserve a great backup strategy…..
Resolve to Get Certified in 2018: Firebrand Announces Top 10 Certifications for 2018:
Every year, we make New Year’s Resolutions—lose weight, eat healthier, exercise more—that last until right about mid-January. This year, why not make a resolution
If this article helped you or if you have further suggestions, please feel free to comment below. 
This was the 10th site I went to to solve this issue, by far the clearest to read and worked a treat – thank you v.v. much!
That’s good to hear Graeme that this thread worked you, Much Appreciated 🙂
Hi Jatin – do you know how/if this can be done using the new, UWP Remote Desktop app?
Hi Caleb, I haven’t had a chance to try using UWP but will give it a go and get back to you. Thanks.
Hello, Is there a way to RDP Azure AD joined machine with keeping NLA(Network Level Authentication) enabled?
Hello, Is there a way to connect Azure AD machine with keeping Network Level Authentication enabled?