This blog post will show you how to RDP into a Windows machine that is Azure AD domain joined.
RDP to an Azure AD domain joined machine is not as straightforward as connecting to a normal machine in a workgroup or AD joined configuration.
Azure AD machine has a different security configuration which requires a few changes before it can be RDP.
Disable NLA
The first thing we need to do before RDP to an Azure AD machine is disable Network Level Authentication (NLA) on the Azure AD machine.
To disable NLA make changes in:
Settings -> System -> Remote Desktop
Un-tick
Require devices to use Network Level Authentication (NLA)
RDP Configuration
On the machine, you are connecting from edit the RDP configuration file or shortcut and add the following lines.
enablerdsaadauth:i:0
enablecredsspsupport:i:0