Chapter 10: Managing Access
In this chapter, we will journey through the process of managing access within Azure Virtual Desktop (AVD). First, we look at planning, managing, and restricting access to AVD resources. This consists of exploring how Role-Based Access Control (RBAC) works in combination with the permissions that must be synchronized with the Active Directory domain. Also, we will briefly look at group policy and the value it brings to a virtual desktop environment.
In this chapter, we will cover the following topics:
- Introduction to Azure RBAC
- Planning and implementing Azure role-based controls
- The delegated access model
- Assigning RBAC roles to IT admins
- Creating a custom role using rights assignments
- Configuring user restrictions by using Azure AD groups