Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Securing Cloud PCs and Azure Virtual Desktop

You're reading from   Securing Cloud PCs and Azure Virtual Desktop Start implementing and optimizing security for Windows 365 and AVD infrastructure

Arrow left icon
Product type Paperback
Published in Jun 2024
Publisher Packt
ISBN-13 9781835460252
Length 396 pages
Edition 1st Edition
Tools
Arrow right icon
Authors (2):
Arrow left icon
Dominiek Verham Dominiek Verham
Author Profile Icon Dominiek Verham
Dominiek Verham
Johan Vanneuville Johan Vanneuville
Author Profile Icon Johan Vanneuville
Johan Vanneuville
Arrow right icon
View More author details
Toc

Table of Contents (21) Chapters Close

Preface 1. Part 1: An Introduction to Microsoft Virtual Desktops FREE CHAPTER
2. Chapter 1: Introducing Windows 365 and Azure Virtual Desktop 3. Part 2: Why Is Endpoint Security Important?
4. Chapter 2: Importance of Securing Your Desktops 5. Chapter 3: Modern Security Risks 6. Part 3: Security Controls for W365 and AVD
7. Chapter 4: Securing User Sessions 8. Chapter 5: Preventing Data Leakage from Desktops 9. Chapter 6: Update Management Strategies 10. Chapter 7: Threat Detection and Prevention 11. Chapter 8: Configuring Access Control 12. Part 4: Additional Security Controls per Solution
13. Chapter 9: Securing Windows 365 14. Chapter 10: Securing Azure Virtual Desktop 15. Chapter 11: Securing Azure Infrastructure 16. Part 5: Use Cases
17. Chapter 12: Windows 365 Use Cases 18. Chapter 13: Azure Virtual Desktop Use Cases 19. Index 20. Other Books You May Enjoy

Trusted launch and confidential computing

As well as securing the software, network, and OS layer, the IT admin also needs to think about the hardware layer. Luckily, Microsoft provides several options to achieve this.

Trusted launch

Trusted launch is offered on Gen 2 Azure virtual machines. It offers several security enhancements that can be enabled separately. When starting the process of creating a new Azure virtual machine in the portal, the trusted launch is automatically selected. However, the IT admin can select which options to activate. By default, Enable secure boot and Enable vTPM are selected, as shown in the following figure.

Figure 10.50 – Configuring trusted launch

Figure 10.50 – Configuring trusted launch

Let’s discuss what each option does:

  • Enable secure boot: This feature will protect the virtual machine from rootkits that overwrite the firmware, boot kits that replace the OS bootloader, kernel rootkits that replace a piece of the OS kernel, and driver...
lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime