Allow windows server 2022 domain access from outside to join PCs

Question

Hi,

I created a windows server 2022 instance on azure, and a local active directory, I'm trying to join a external pc to that domain and I'm not able to. I can reach the public IP, however, when I try to reach the local domain name created I can't. Also, I'm able to RDP to that active directory from outside using the public IP. Any help would be appreciated.

Answer 1

Hi,
If I understand what you are trying to do correctly, then, I will start with, you probably shouldn't do it.

However....

two things will need to be in-place.

1. You need your name resolution to work. With your local/isp DNS enabling internet access, you have a problem with then resolving the AD Domain for the join to work. Normally you would point your client DNS to your AD domain controller for DNS. But then you need to be able to resolve internet DNS
2. You need network access - Refer https://learn.microsoft.com/en-us/troubleshoot/windows-server/active-directory/config-firewall-for-ad-domains-and-trusts
   1. You probably have an azure NSG (network security group) blocking all inbound access (except RDP from the sound of it)
   2. Not sure where your client is but if it is also behind a firewall or the like, there may be further port blocakages there.
   3. If your client is behind a NAT (network address translation) device/service i.e. Home router/isp then you may not be able to do it anyway.

Another option may be to create a point to site VPN in azure (or site to site VPN dependng on your situation).

There may be other options but these are my initial thoughts.

Regards,