Ensuring a secure, cost-effective, and efficient way to support remote workers has become increasingly important for all companies in today’s circumstances. Microsoft Azure has helped ease some of the complexities with the new Azure Virtual Desktop (AVD) offering and specifically the latest Spring 2020 release – available for Public Preview in June.
Azure Virtual Desktop is a combined cloud equivalent of virtual desktop infrastructure (VDI), Remote Desktop Service (RDS) and App Virtualization. Azure Virtual Desktop enables you to effortlessly maintain your desktop image, applications, and users. You also do not have to worry any longer about managing resources such as RDS gateways, licensing, and load balancing.
Here are the top five benefits of the new Azure Virtual Desktop in Azure:
The amount of use cases for AVD are endless. For example, virtual desktops can be provided to remote workers securely using your existing Active Directory for authentication, thus allowing users to access their desktop from home via the internet.
Do you have a legacy application that you want to publish to a subset of users? Applications can be installed on a AVD host and published to a group of users in order to minimize maintenance and management.
AVD is a global service from Azure. AVD hosts can be deployed in multiple regions around the world to support your users globally. Being able to provide virtual desktops within the same geographic regions of your remote users ensures a great user experience.
Do you have a particular department that requires higher compute power? It is possible to provide different compute and storage performance SKUs for different sets of users.
Training or testing environments can be deployed with AVD to test new applications or policy settings.
AVD is not just for enterprise users and applications- it can also be utilized by software companies to distribute a cloud version (using a SaaS model) of their application to customers.
The AVD service manages the RDS infrastructure, so you only need to manage your users, applications, and virtual machines. RDS components such as Gateways, Brokers, and Licenses are provided by the AVD service and no longer need management. If you already have Microsoft 365 licenses, it covers AVD licensing for Windows 10.
With the latest AVD release (Spring 2020), the AVD components are now Azure Resource Manager (ARM) resources and can be managed within the Azure portal or through PowerShell. This makes managing AVD much more convenient. For example, users can be assigned to personal desktops or pools of desktops within the portal and through Azure Active Directory (Azure AD) group memberships.
Automated scaling of the AVD pools is available for powering on and off AVD hosts based on user session counts and peak hours. This saves costs by powering off virtual machines when they are not in use and powering them back on as users start logging in.
Monitoring of AVD diagnostics is also available with dashboards and alerts available for troubleshooting and Virtual Machine (VM) or User issues.
AVD hosts can be Windows 10 Enterprise, Windows 7 Enterprise, Windows Server 2012R2, 2016, or 2019. However, a major benefit of AVD is the availability of the Windows 10 Enterprise Multi-Session Operating System.
This OS support allows for multiple users to log into a single Windows 10 VM. The multi-session capability promotes significant cost savings compared to other VDI solutions. In standard VDI solutions, single users are assigned a dedicated virtual machine. Whereas when using Windows 10 multi-session with AVD, multiple users are assigned to a pool of desktops, thus sharing resources (and costs).
AVD deployments are always based on some form of VM image, whether it is a standard Azure marketplace image or a “golden image” created by an IT Team to cater to company needs.
When it comes to “golden images” there is a lot of administrative effort and many moving parts that go into creation, maintenance, and distribution of these images while keeping track of all changes; it can be a hectic and time-consuming task for businesses of any size.
This is where Microsoft Azure Shared Image Gallery and Azure DevOps come into play to provide an automated and uncomplicated way to build, maintain, support, and replicate these “golden images.” The shared image gallery helps overcome several obstacles, involved with management and distribution of images across the globe, while offering version management in one place. Some of the benefits include:
Whereas Azure Image Builder via Azure DevOps solves the problem of creating golden images in an automated and repeatable way, some of the benefits of Azure Image builder include:
In order to effectively use pooled Windows 10 multi-session desktops, shared storage for user profiles is a necessity. A user could be accessing a different VM every time they log in to AVD, so their user profile needs to be available and responsive.
FSLogix in combination with Azure File Storage solves this challenge efficiently. The desired Azure Storage SKU and data redundancy options can be configured to meet any availability requirements. Each user profile is stored on the file share and is mounted at user login to the AVD host. The user is not able to tell they are using a remote profile- it simply looks as if the profile is local to the machine. The profiles are managed using FSLogix which is simple to deploy and manage. FSLogix gets installed on the VM image and configuration settings are managed using group policy.
FSLogix with Azure File Storage makes for a great solution to manage user profiles without using roaming profiles or folder redirections. Plus, there are no synchronization conflicts because the profiles are always accessed directly from the remote location.
Additionally, the Azure File Storage share can be backed up using Azure Backup to an Azure Backup Recovery Services vault and easily replicated to other regions for added protection.