Microsoft is unable to reach the domain controllers for this managed domain

George Anobah 21 Reputation points
2022-08-17T07:48:40.767+00:00

Hi

We have deployed Azure ADDS in our environment and the AADDS Vnet was joined (peered) to an ExpressRoute Vnet for on-premises connectivity to Azure but unfortunately received the following alert.

231897-image.png

All NSG rules are correct, as depicted in the follwoing picture:
231887-image.png

Does anyone have an idea? Thanks in advance for helping

Azure ExpressRoute
Azure ExpressRoute
An Azure service that provides private connections between Azure datacenters and infrastructure, either on premises or in a colocation environment.
398 questions
Microsoft Entra
{count} votes

3 answers

Sort by: Most helpful
  1. JimmySalian-2011 42,196 Reputation points
    2022-08-18T08:23:46.987+00:00

    Hi,

    It seems you are missing some rules on the NSG Inbound and Outbound, also check this article and listed ports here.

    network-considerations

    ==
    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    1 person found this answer helpful.
    0 comments No comments

  2. Manu Philip 18,706 Reputation points MVP
    2022-08-17T17:49:36.8+00:00

    It could be a DNS configuration issue in the VNET. Check the AzureP2S-VNET and see the DNS Servers settings. Type the name and the IP of the on-premises domain controllers that runs the DC/DNS server roles.

    ----------

    --please don't forget to upvote and Accept as answer if the reply is helpful--


  3. George Anobah 21 Reputation points
    2024-12-04T09:12:55.8466667+00:00

    This issue has been resolved. I added a user-defined route of internet to the Domain services subnet and this resolved the issue

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.