Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,487 questions
Entra Domain Services Domain NLTEST Failing
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 6%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERK%3C/text%3E%3C/svg%3E)
randy-knight
0
Reputation points
I have a newly created Entra Domain Services Domain. Domain Join is failing. I have confirmed the following:
- DNS Servers have been set on the virtual network and are correct on the VM.
- VM has been rebooted so this shouldn't be a DNS Cache issue.
- nsloolkup <domain fqdn> resolves to the Entra DS Domain Servers
- ping <domain fqdn> and nltest /dsgetdc:<domain FQDN> both fail.
- EDIT: tnc <dns IP Address> -Port 389 works as well.
Not sure where to go with this.
Microsoft Entra ID
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 30%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGP%3C/text%3E%3C/svg%3E)
Goutam Pratti 4,720 Reputation points Microsoft External Staff Moderator2025-05-07T21:28:51.2833333+00:00 Hello @randy-knight ,
I Understand your Entra Domain Services Domain join is failing. If the VM can't find the domain, there's usually a network connection or configuration issue. Review the following troubleshooting steps to locate and resolve the issue: Connectivity issues for domain-join
After performing the above provided trouble shooting you can domain-join a VM using PowerShell with the Add-Computer cmdlet.
The following example joins the AADDSCONTOSO domain and then restarts the VM. When prompted, enter the credentials for a user that's a part of the managed domain:Add-Computer -DomainName AADDSCONTOSO -RestartTo domain-join a VM without connecting to it and manually configuring the connection, you can use the Set-AzVmAdDomainExtension Azure PowerShell cmdlet.
Once the Windows Server VM has restarted, any policies applied in the domain are pushed to the VM. You can also now sign in to the Windows Server VM using appropriate domain credentials.
If you are still facing the issue. Provide me the screen shot of error while trying to domain join so that it can be helpful for trouble shooting the issue.
for additional information you can follow: https://learn.microsoft.com/en-us/entra/identity/domain-services/join-windows-vm#troubleshoot-domain-join-issues
Hope this helps. Let us know if you have any additional queries. Happy to assist you further.
-
Goutam Pratti 4,720 Reputation points Microsoft External Staff Moderator
2025-05-08T23:00:25.26+00:00 Hello @randy-knight ,
following up to see if the above response is helpful. Let us know if you have any additional queries. Happy to assist you further.
-
Goutam Pratti 4,720 Reputation points Microsoft External Staff Moderator
2025-05-09T22:15:51.93+00:00 Hello @randy-knight ,
following up to see if the above response is helpful. Let us know if you have any additional queries. Happy to assist you further.
Sign in to comment
Sign in to answer