We have setup an infrastructure on Azure containing Azure AD , VM's etc. We use Azure Active Directory Domain Services to have the servers domain-joined and alsoo for local AD-authentication for some specific applications.
I would like to write some custom Azure functions that access the Azure Active Directory Domain Services for querying some specific AD-properties like msDS-UserPasswordExpiryTimeComputed. Those properties are not exposed in Azure AD.
Can an Azure function access resources that are only exposed into a Virtual Network? It is sufficient to have an App Service plan (Basic or Premium) to access these internal resources? Or is this not supported?
Best regards, Jens
It should be possible using the VNET integration feature of App Service, or App Service Environments (ASE). See here for more information. Note that this document has not been updated for Azure Functions but the same process should work as long as you are creating Azure Functions on your standard/premium App Service plan or on an ASE. Please note that this won't work if you are trying to use the consumption (previously known as dynamic) plan for your function apps.