Joining Azure Virtual Machines to On-Premises AD DS Domain
Question
You have an on-premises Active Directory Domain Services (AD DS) domain that syncs with an Azure Active Directory (Azure AD) tenant.
You plan deploy 100 new Azure virtual machines that will run Windows Server.
You need to ensure that each new virtual machine is joined to the AD DS domain.
What should you use?
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D.A
https://www.ludovicmedard.com/create-an-arm-template-of-a-virtual-machine-automatically-joined-to-a-domain/The correct answer is C. Azure AD Connect.
Explanation:
Azure AD Connect is a tool used to synchronize on-premises Active Directory objects with Azure AD. It provides a secure and reliable connection between on-premises AD DS and Azure AD, enabling users to sign in to both cloud and on-premises resources with a single set of credentials.
When you deploy virtual machines in Azure, you can use Azure AD Connect to ensure that each new virtual machine is joined to the AD DS domain. You simply need to ensure that the Azure virtual machines are configured to use the same DNS servers as your on-premises AD DS domain controllers, and then run the Azure AD Connect installation wizard to synchronize the computer objects in AD DS with Azure AD.
Option A, an Azure Resource Manager (ARM) template, is used to define and deploy Azure resources. It can be used to deploy virtual machines and other resources, but it does not provide a mechanism for joining virtual machines to an AD DS domain.
Option B, a Group Policy Object (GPO), is used to configure and enforce settings for user and computer objects in AD DS. It can be used to automate the process of joining virtual machines to an AD DS domain, but it requires that the virtual machines are already deployed and configured.
Option D, an Azure management group, is used to organize and manage Azure resources at scale. It does not provide a mechanism for joining virtual machines to an AD DS domain.
