%20-%20%E5%8A%A0%E5%85%A5%20Entra%20ID%EF%BC%88%E6%B7%BB%E5%8A%A0%E5%B7%A5%E4%BD%9C%E5%B8%90%E6%88%B7%EF%BC%89%E5%90%8E%E5%B8%90%E6%88%B7%E7%99%BB%E5%BD%95%E5%A4%B1%E8%B4%A5%EF%BC%88%E5%AF%86%E7%A0%81%E9%94%99%E8%AF%AF%EF%BC%89.png)
我有一个带有本地管理员帐户的 Windows 11 桌面,并使用加入提示中的 Entra ID 链接添加了一个工作帐户(按照 MS 文档文章的说明)。
加入成功,重启后,我使用与刚刚加入的工作帐户关联的用户电子邮件地址登录,结果出现密码错误。密码千分之一正确,否则我根本无法加入,我已经检查了四遍,两次。
我重新登录本地管理员帐户并查看“设置”->“帐户”->“其他用户”中列出的帐户(见图)
或者,我读到过,如果没有本地 DC 来进行同步,Azure AD 用户就无法登录到本地计算机,这与我在文档中读到的相反,但其中大部分内容已过时、已重命名,并且屏幕截图与管理仪表板中查看的内容不匹配等,所以我非常生气。
我尝试使用以下约定登录:
- azuread\用户名
- [电子邮件保护]
任何想法都值得赞赏。
dsregcmd /status 输出:
+----------------------------------------------------------------------+ | 设备状态 | +----------------------------------------------------------------------+
AzureAdJoined : YES
EnterpriseJoined : NO
DomainJoined : NO
Virtual Desktop : NOT SET
Device Name : dev04
+----------------------------------------------------------------------+ | 设备详细信息 | +----------------------------------------------------------------------+
DeviceId : ZZZZZZZZ-ZZZZ-ZZZZ-ZZZZ-c89f185ZZZZZ
Thumbprint : ZZZZZZZZ42BF67427D9A8DA4D78771ZZZZZZZZZZ
DeviceCertificateValidity:[2024-01-27 00:45:22.000 UTC -- 2034-01-27 01:15:22.000 UTC] KeyContainerId:ZZZZZZZZ-ZZZZ-ZZZZ-ZZZZ-9554ZZZZZZZZ KeyProvider:Microsoft Platform Crypto Provider TpmProtected:是 DeviceAuthStatus:成功
+----------------------------------------------------------------------+ | 租户详细信息 | +----------------------------------------------------------------------+
TenantName : workdomain.com
TenantId : ZZZZZZZZ-ZZZZ-ZZZZ-8d95-8edaZZZZZZZZ
AuthCodeUrl : https://login.microsoftonline.com/ZZZZZZZZ-ZZZZ-ZZZZ-8d95-ZZZZZZZZZZZZ/oauth2/authorize
AccessTokenUrl : https://login.microsoftonline.com/ZZZZZZZZ-ZZZZ-ZZZZ-8d95-ZZZZZZZZZZZZ/oauth2/token
MdmUrl :
MdmTouUrl :
MdmComplianceUrl :
SettingsUrl :
JoinSrvVersion : 2.0
JoinSrvUrl : https://enterpriseregistration.windows.net/EnrollmentServer/device/
JoinSrvId : urn:ms-drs:enterpriseregistration.windows.net
KeySrvVersion : 1.0
KeySrvUrl : https://enterpriseregistration.windows.net/EnrollmentServer/key/
KeySrvId : urn:ms-drs:enterpriseregistration.windows.net
WebAuthNSrvVersion : 1.0
WebAuthNSrvUrl : https://enterpriseregistration.windows.net/webauthn/ZZZZZZZZ-ZZZZ-ZZZZ-8d95-ZZZZZZZZZZZZ/
WebAuthNSrvId : urn:ms-drs:enterpriseregistration.windows.net
DeviceManagementSrvVer : 1.0
DeviceManagementSrvUrl : https://enterpriseregistration.windows.net/manage/ZZZZZZZZ-ZZZZ-ZZZZ-8d95-ZZZZZZZZZZZZ/
DeviceManagementSrvId : urn:ms-drs:enterpriseregistration.windows.net
+----------------------------------------------------------------------+ | 用户状态 | +----------------------------------------------------------------------+
NgcSet : NO
WorkplaceJoined : NO
WamDefaultSet : NO
+----------------------------------------------------------------------+ | SSO 状态 | +----------------------------------------------------------------------+
AzureAdPrt : NO
AzureAdPrtAuthority :
AcquirePrtDiagnostics : PRESENT
Previous Prt Attempt : 2024-01-27 01:25:09.574 UTC
Attempt Status : 0xc00484c0
User Identity : [email protected]
Credential Type : Password
Correlation ID : ZZZZZZZZ-d335-ZZZZ-ZZZZ-9deb95ZZZZZZ
Endpoint URI : https://sso.godaddy.com/v1/wss/trust/XX/XXXXXXXX
HTTP Method : POST
HTTP Error : 0x800484c0
HTTP status : 405
Server Error Code :
服务器错误描述:EnterprisePrt:无EnterprisePrtAuthority:
+----------------------------------------------------------------------+ | 诊断数据 | +----------------------------------------------------------------------+
AadRecoveryEnabled : NO
Executing Account Name : dev04\mrspock
KeySignTest : PASSED
DisplayNameUpdated : YES
OsVersionUpdated : YES
HostNameUpdated : NO
Last HostName Update : NONE
+----------------------------------------------------------------------+ | 当前用户的 IE 代理配置 | +----------------------------------------------------------------------+
Auto Detect Settings : YES
Auto-Configuration URL :
Proxy Server List :
Proxy Bypass List :
+----------------------------------------------------------------------+ | WinHttp 默认代理配置 | +----------------------------------------------------------------------+
Access Type : DIRECT
+----------------------------------------------------------------------+ | Ngc 先决条件检查 | +----------------------------------------------------------------------+
IsDeviceJoined : YES
IsUserAzureAD : NO
PolicyEnabled : NO
PostLogonEnabled : YES
DeviceEligible : YES
SessionIsNotRemote : YES
CertEnrollment : none
PreReqResult : WillNotProvision
如需了解更多信息,请访问https://www.microsoft.com/aadjerrors