Planning and Implementing Azure Roles and Role-Based Access Control (RBAC) for Azure Virtual Desktop

Difficulty: Intermediate
Duration: 5 minutes and 18 seconds
Students: 468
Rating: 3.9/5

An important aspect of any Azure Virtual Desktop (AVD) environment is ensuring it is accessible and secure to not only meet best practices standards but also meet your organization’s requirements. To get the most out of this cloud-hosted service, it is important to use the correct features and components that make up the AVD environment, which will, in turn, give a much better experience for your users. 

 AVD allows organizations to set up redundant, scalable, and agile environments that offer the following key capabilities:

  • Configure an unlimited number of host pools that can accommodate different workloads within an organization
  • Create custom images for your multiple workloads or utilize the ready to deploy images in the Azure Gallery for testing
  • Integrate Azure services to automate updates, power on/off, and autoscaling to help reduce costs and admin overhead
  • Provision Personal (persistent) desktops which will allow for individual ownership

From a management perspective, you can utilize the Azure Portal, PowerShell, and REST interfaces to manage and implement AVD resources. You can publish a fully-featured desktop or single remote application for different sets of users. You also can assign multiple users to multiple application groups to reduce the number of images.

This lesson will help you implement access to your Azure Virtual Desktop environment and understand how it integrates with the other Azure services. It covers understanding Azure roles and RBAC for Azure Virtual Desktop, managing roles on session hosts, and configuring user restrictions via group policy and Azure policy.

Learning Objectives

  • Plan and implement Azure roles and role-based access control (RBAC) for Azure Virtual Desktop
  • Manage roles, groups, and rights assignment on Azure Virtual Desktop sessions
  • Configure user restrictions by using AD group policies and Azure policies

Intended Audience

This lesson is intended for anyone who wants to become an Azure Virtual Desktop Specialist and/or is preparing to take the AZ-140 exam.

Prerequisites

To get the most from this lesson, it is recommended that you have a good understanding of Azure administration, although this is not essential.

Covered Topics