Managing Access to Azure Virtual Desktop

An important aspect of any Azure Virtual Desktop (AVD) environment is ensuring it is accessible and secure to not only meet best practices standards but also meet your organization’s requirements. To get the most out of this cloud-hosted service, it is important to use the correct features and components that make up the AVD environment, which will, in turn, give a much better experience for your users. 

 AVD allows organizations to set up redundant, scalable, and agile environments that offer the following key capabilities:

  • Configure an unlimited number of host pools that can accommodate different workloads within an organization
  • Create custom images for your multiple workloads or utilize the ready to deploy images in the Azure Gallery for testing
  • Integrate Azure services to automate updates, power on/off, and autoscaling to help reduce costs and admin overhead
  • Provision Personal (persistent) desktops which will allow for individual ownership

From a management perspective, you can utilize the Azure Portal, PowerShell, and REST interfaces to manage and implement AVD resources. You can publish a fully-featured desktop or single remote application for different sets of users. You also can assign multiple users to multiple application groups to reduce the number of images.

This course will help you implement access to your Azure Virtual Desktop environment and understand how it integrates with the other Azure services. It covers understanding Azure roles and RBAC for Azure Virtual Desktop, managing roles on session hosts, and configuring user restrictions via group policy and Azure policy.

Learning Objectives

  • Plan and implement Azure roles and role-based access control (RBAC) for Azure Virtual Desktop
  • Manage roles, groups, and rights assignment on Azure Virtual Desktop sessions
  • Configure user restrictions by using AD group policies and Azure policies

Intended Audience

This course is intended for anyone who wants to become an Azure Virtual Desktop Specialist and/or is preparing to take the AZ-140 exam.


To get the most from this course, it is recommended that you have a good understanding of Azure administration, although this is not essential.


Hello and welcome to this course on Managing Access to Azure Virtual Desktop. My name is Shabaz Darr and I'll be your instructor for this course. I am an Azure Virtual Desktop Specialist and have been working in the Microsoft cloud analogics for several years, specifically with Azure Virtual Desktop since its inception and have multiple Azure-focused certifications. My contact information is available on screen. Please feel free to reach out to me with any questions, comments, or concerns, and I will be happy to discuss these with you. For any other issues you can always get in touch with us here at Cloud Academy by sending an email to, and one of our cloud experts will follow up with you.

This course is intended for people that are planning on taking the Azure Virtual Desktop Specialty exam and anyone who is interested in learning how to deploy an Azure Virtual Desktop environment. By the end of this course, you will have knowledge on:

  • Planning and implementing Azure roles and role-based access control for Azure Virtual Desktop
  • Managing roles, groups, and rights assignment on Azure Virtual Desktop session hosts
  • Configuring user restrictions by using AD group policies and Azure policies

To get the most from this course, you should have an Administrator-level understanding of Azure Cloud services.

Feedback on course content hosted by Cloud Academy is always appreciated and encouraged, as it allows us as trainers to improve which helps all of our students taking courses in the future. If you have any feedback, positive or negative, it would be greatly appreciated if you could contact

Please note, at the time of writing this content, all course information was accurate. To accommodate new features and services, Microsoft regularly update exam guidelines and measured skills. This may result in certain elements of discrepancy appearing in the content over time. Please contact us if you find any outdated content at This will allow us to update the course during its next release cycle. Thank you.

About the Author

Shabaz Darr is a Senior Infrastructure Specialist at Netcompany based in the UK. He has 15 years plus experience working in the IT industry, 7 of those he has spent working with Microsoft Cloud Technologies in general, with a focus on MEM and IaaS. Shabaz is a Microsoft MVP in Enterprise Mobility with certifications in Azure Administration and Azure Virtual Desktop. During his time working with Microsoft Cloud, Shabaz has helped multiple public and private sector clients in the UK with designing and implementing secure Azure Virtual Desktop environments.