Using Azure AD to push Group Policy settings
I am trying to use Azure Active Directory instead of using a traditional domain controller.
I would like to use Azure AD to authenticate users and to push GPO settings, such as folder redirection, drive mappings and Windows 10 privacy settings.
I have created an Office 365 account, which I understand creates the AD backend. I have also created an Azure account and added my test Windows 10 PC to the Azure domain using the O365/Azure user details.
I have also subscribed to an Azure AD premium trial.
It is at this point I am stuck. Where in Azure can I see the PC I have added?
Also, can I use Azure AD to push traditional Group Policy settings to my test PC, and if so where do I go to configure this?
Or do I need to use something like Windows Intune?
Solution 1:
Azure active directory cannot be used like this. It is not a replacement for Active Directory (well, at least it isn't at the time of writing).
What you want to do is use the intune service in combination with AAD to achieve what you want. I do not believe you will be able to do full GPO, but there are a ton of settings you can configure.
Solution 2:
Azure AD Directory Services is a new preview feature that functions more as a Domain Controller as a Service offering and does allow you push GPO's. The GPO and OU structure is more limited to classic AD, but it can be done. It is in preview so bear in mind the SLA consequences for that.