I have started training on Microsoft Windows Virtual Desktop hosted on Azure. A lack of system components, the need for rapid deployment of remote systems to remote and hybrid workers, along with more IT and OT virtualization has led me to look a little deeper into the technology.
Microsoft Windows Virtual Desktop is a desktop and application virtualization service that runs on top of Microsoft Azure. The service allows you to run desktops or applications over the internet from Windows, MAC OS, IOS, Android, and Linux operating systems. Browsers, including Firefox, Chrome, and Edge may be used to access Windows Virtual Desktops and hosted applications.
One of the positives of running in a virtual desktop environment is the ability to centralize security functions utilizing Azure AD and Multi-Factor Authentication (MFA). RBAC or role-based access control can be used to further limit access to desktops and applications in a granular way. Another feature that Microsoft likes to tout from a security perspective is the fact that confidential or sensitive corporate information is left within a session instead of on a device. So, that situation we all know and love with a stolen laptop goes at the window if the user’s credentials and MFA are secured.
Utilizing Azure AD also allows you to extend your in-house active directory environment with replication, further reducing the complexity of setting up a brand-new directory service.
There are a few good training resources for configuring and operating virtual desktops. I've chosen to take video based training offered on Udemy from the following two providers and supplementing with additional MSFT documentation but, these guys are the masters if you have questions, show them some love as my own lab/walkthrough was based on experiences with their coursework:
https://www.udemy.com/share/[email protected]=/- Quick Primer
https://www.udemy.com/share/[email protected]==/- AZ-140 Exam Prep