In this video, we go over enabling Multi-factor Authentication, or MFA, for Windows Virtual Desktop (WVD) Spring Update, or ARM. We use an Azure AD Conditional Access Policy to enforce MFA on a group of users. We also set an MFA Trusted IP address to exclude a public IP source from the MFA Policy.
Continue reading “Enable MFA for WVD ARM”
In this video, we deploy an Azure Recovery Services Vault to back up an Azure File share. Protecting data is critical. Azure Storage accounts offer data resiliency, but replicating copies of the data inside a data center, region or across regions. Replication provides real-time protection, but there is no way to recover a previous version of the data. This capability is critical with Azure File Shares, especially when storing user data such FSLogix Profiles. Azure Backup provides the ability to restore previous versions using Azure Storage Snapshots to create and manage Azure File recovery points.
To learn more about Azure Storage Accounts:
https://www.ciraltos.com/azure-101-azure-storage-accounts/
To learn more about Azure SMB Shares with Azure Files:
https://www.ciraltos.com/azure-files-smb-access-with-windows-ad/
In this video, I walk through setting up the Azure Monitor solution for Windows Virtual Desktop Spring Update. The video starts by setting up a Log Analytics workspace, then adding the Session Hosts to send performance data to the Log Analytics Workspace. After that, Azure Diagnostic data is configuring to send data to Log Analytics. Lastly, the Workbook available from Microsoft is deployed to view WVD performance and session information.
Continue reading “Monitoring Windows Virtual Desktop Spring Update with Log Analytics”
This video goes over two Azure IP addresses used for Azure VM’s. The WireServer IP of 168.63.129.16 and the Azure Instance Metadata Service (IMDS) IP address 169.254.169.254. In the video, I go over what each is used for and then give a demonstration on using the WireServer IP address to query DNS. After that, I use the IMDS REST Endpoint to pull metadata including the Azure environment and scheduled events.
Continue reading “Two Azure IP Addresses You Need to Know About”
In this video, I show you how to configure Email Feed Discovery for Windows Virtual Desktop (WVD). Email Feed Discovery allows users to setup the Remote Desktop Client with their email address instead of the WVD Feed URL.
Continue reading “Windows Virtual Desktop Email Discovery”
In this video, I go over the difference between Azure Business to Business, or B2B and Azure Business to Customer, or B2C. This is a high-level comparison between the two services for those getting ready for an Azure Certification or designing Azure solutions.
Continue reading “Azure B2B vs. B2C”This video goes over how to deploy an Azure VNet Gateway on an existing VNet and enable Point-to-Site (P2S) VPN connections using Azure AD to authenticate the client. A P2S connection allows clients to connect securely to an Azure Gateway and access resources on the private VNet. The video goes on to demonstrate how enable Multi-Factor Authentication with a Conditional Access policy or enforcing MFA per-user.
Continue reading “Azure Point-to-Site VPN with Azure AD Authentication and MFA”
I am happy to release an update to my Windows Virtual Desktop (WVD) Start-Stop script for Windows Virtual Desktop updated for Spring 2020, or “WVD ARM.” This script uses an Azure Function to starts and stops WVD Session hosts in a host pool based on the user load.
Continue reading “Auto Start and Stop Session Hosts in Windows Virtual Desktop Spring Update (ARM) Edition with an Azure Function”