Task: Join a Windows 10 device to an Azure AD Tenant

Video: Azure AD Join and Enterprise State Roaming

Estimated time: 10 minutes to set-up, 10 minutes to complete

Goal

Join a Windows 10 device to an Azure AD Tenant, verify the join, and (optionally) test the device join.

Pre-requisites

  1. Azure subscription
  2. Azure AD tenant with Premium P2 trial
  3. A test user account in the Azure AD tenant

  4. A Windows 10 Pro virtual machine or device that can be joined to an Azure AD tenant

    Completing previous tasks will meet pre-requisites 1-3.

If you do not have a Windows 10 device to test, you can run the following script from a bash Cloud Shell session to provision a Windows 10 Pro VM in Azure.


az group create --Name "task-win10" --Location "EastUS"
az group deployment create -n "Windows10-VM" -d "task-win10" --mode Incremental --Template-Uri https://inedemoassets.blob.core.windows.net/taskfiles/azure/deploy-win10.json

Note: You will not be able to test the login with the Azure based Windows 10 VM. You will be able to verify that the device is joined.

Requirements

  1. Join a Windows 10 device to your Azure AD tenant
  2. Verify that the device is joined
  3. Optional: Test access to the device

Requirement 1: Join a Windows 10 device to your Azure AD tenant

Log in to a Windows 10 device that you will join to your Azure AD tenant. Use the User Settings options page to join the Windows 10 device to the tenant for the test user.

Note: Be sure to join the device, not register it.

Requirement 2: Verify that the device is joined

Navigate to the Devices page of the Azure AD blade and verify that the device is joined.

Requirement 3: Test access to the device (optional)

Note: this requirement cannot be completed from an Azure Windows 10 VM.

Log out of the Windows 10 device and log back in as the test user (tasks@yourtenantdomain).

Cleanup

Solution

Having trouble completing this task? View the demonstration video to see how to do it.