Identify Azure Virtual Desktop requirements for Active Directory Domain Services (AD DS), Azure Active Directory Domain Services (Azure AD DS), and Microsoft Azure Active Directory (Azure AD), part of Microsoft Entra

Azure Virtual Desktop (AVD) is a cloud-based virtualization service that enables organizations to provide a virtual desktop experience to their end users. This article will focus on the requirements for Active Directory Domain Services (AD DS), Azure Active Directory Domain Services (Azure AD DS), and Microsoft Azure Active Directory (Azure AD) in the context of configuring and operating Microsoft Azure Virtual Desktop.

1. Active Directory Domain Services (AD DS)

• An on-premises AD DS infrastructure is required if you want to join AVD session host virtual machines (VMs) to your domain.
• A site-to-site VPN or Azure ExpressRoute connection is required between your on-premises network and Azure Virtual Network if you want to domain-join AVD session host VMs.
• You also need to ensure that domain controllers running AD DS are reachable by the AVD session hosts.

2. Azure Active Directory Domain Services (Azure AD DS)

• Azure AD DS provides managed domain services in Azure, allowing you to deploy AVD session host VMs without the need for an on-premises AD DS infrastructure.
• To use Azure AD DS, your Azure subscription must have a virtual network with a subnet designated for Azure AD DS. This subnet should have sufficient IP address capacity for your AVD deployment.
• Azure AD DS must be synchronized with Azure AD, and the synchronization process should be completed before deploying AVD session host VMs.
• You need the requisite permissions to manage Azure AD and Azure AD DS.

3. Microsoft Azure Active Directory (Azure AD)

• Azure AD is the cloud-based identity and access management service provided by Microsoft.
• To use Azure Virtual Desktop, you must have an Azure AD tenant.
• Users and groups within Azure AD can be assigned specific AVD roles and permissions to manage and access resources.
• Azure AD can also be used to enable conditional access policies, multi-factor authentication, and other identity security features for AVD.

These are the fundamental requirements related to the directory services. Additionally, it’s important to consider other prerequisites for Azure Virtual Desktop, such as network connectivity, user licensing, storage requirements, and prerequisites for client devices accessing AVD sessions.

In conclusion, when configuring and operating Azure Virtual Desktop, you need to ensure that you meet the requirements for Active Directory Domain Services (AD DS), Azure Active Directory Domain Services (Azure AD DS), and Microsoft Azure Active Directory (Azure AD). Whether you choose to use an on-premises AD DS infrastructure, Azure AD DS, or Azure AD, these services play a crucial role in managing user identities, domain-joining session host VMs, and providing secure access to AVD resources. By meeting these requirements, you can successfully deploy and manage Azure Virtual Desktop within your organization.