Recently, I helped a customer, who is testing with Windows Virtual Desktop (WVD). This customer has installed the Windows Virtual Desktop – Management Tool within their Azure portal. This Management Tool makes managing your WVD environment a lot easier and I definitely recommend looking at this if you have not already done so.
However, they run into the problem that when an administrator logs on into the WVD Management Tool the following error appears;
They have done all the steps from this great Tutorial : Deploy a management tool. The Azure AD settings and the user account rights were all good. But still, it only worked for the WVD admin (service) account, even when they selected “Consent on behalf of your organization” during the final step of the tutorial.
To solve this problem you need to assign the “RDS Owner” roll to every user that needs to login to this WVD Management Tool. I explain the steps on how to do this below.
On a Windows device, open Windows PowerShell and run the following command (if you not have installed the RDInfra module already)
Install-Module -Name Microsoft.RDInfra.RDPowerShell
Press Y twice
After installing the module, run the following command to load the module;
Import-Module -Name Microsoft.RDInfra.RDPowerShell
Then run the following command;
Add-RdsAccount -DeploymentUrl https://rdbroker.wvd.microsoft.com
A login prompt will popup. Login with the account you created the WVD tenant with.
The above will be displayed.
Finally run the following command;
New-RdsRoleAssignment -RoleDefinitionName 'RDS Owner' -TenantName [your WVD Tenantname] -SignInName [the user UPN] for example; New-RdsRoleAssignment -RoleDefinitionName 'RDS Owner' -TenantName RobinHoboCom -SignInName email@example.com
The outcome must be like in the screenshot above.
Refresh your webbrowser with the user who had the error messages. You will see that he/she now can select the tenant group.
The user is now able to manage the WVD tenant within the Azure Portal.