We(a small organization) are deploying an Azure VM as Active Directory Domain Controller. Now we want to add clients to this active directory and looking at the network/connectivity solutions.
Have users working from many sites, and outside premises also. Have already looked at directaccess but it needs windows enterprise licenses on the clients. Have already looked at azure site to site VPN but for that users need to be on premises which is not the case most of the times. Have already looked at azure point to site VPN for the users, but it only connects after the users logs in(even by using task scheduler. I broke up the azure vpn client already but it doesnt connect before logging in to windows because it uses a certificate and windows doesnt allow it to be accessed before logging in).
Is there a solution which authenticates users to active directory over the internet like directaccess ?