Responsible Security Components for Azure Virtual Desktop
Question
You are one of the security personnel in your organization.
Your organization is using Azure Virtual Desktop.
While using Azure Virtual Desktop, some components are already secured for your environment.
You or your team will need to configure other components/areas yourself to fit the security needs of your organization.
From the below list of security needs, choose the ones your team or you are responsible for in your Azure virtual desktop deployment.
(Select THREE)
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D. E.Correct Answer: A, B, and E
The below table shows the security needs you are responsible for (as the customer) in your Azure Virtual Desktop deployment:
/answer/imgQ5.png)
Option A is correct.
As a customer, you need to configure the App security yourself in Azure virtual desktop deployment.
Option B is correct.
As a customer, you need to configure the Network Controls yourself in Azure virtual desktop deployment.
Option C is incorrect.
The virtualization control plane is handled by Microsoft itself.
Option D is incorrect.
As a customer, you are not responsible for configuring the physical data center.
It is handled by Microsoft itself.
Option E is correct.
As a customer, you need to configure Session host OS yourself in Azure virtual desktop deployment.
As a security personnel in an organization using Azure Virtual Desktop, you are responsible for configuring and securing certain components to meet the specific security needs of your organization. The components that you are responsible for securing in your Azure Virtual Desktop deployment are:
A. App Security: As a security personnel, you are responsible for ensuring that the applications used in your organization are secure. This includes ensuring that the applications are updated with the latest security patches, configuring access controls to limit access to the applications to only authorized users, and configuring firewalls to prevent unauthorized access to the applications.
B. Network Controls: Network controls refer to the configuration of your network to ensure that only authorized users can access the Azure Virtual Desktop environment. As a security personnel, you are responsible for configuring network controls such as firewalls, virtual private networks ( VPNs), and other network security measures to ensure that your Azure Virtual Desktop environment is secure.
C. Virtualization Control Plane: The Virtualization Control Plane is responsible for managing the deployment of virtual machines and other resources in the Azure Virtual Desktop environment. As a security personnel, you are responsible for configuring the Virtualization Control Plane to ensure that it is secure and that only authorized users have access to it.
In contrast, the following components are already secured for your environment:
D. Physical Datacenter: Azure Virtual Desktop is hosted in the Microsoft Azure cloud, and Microsoft is responsible for securing the physical datacenter where your Azure Virtual Desktop environment is hosted. Microsoft has implemented various physical security measures, including access controls, monitoring, and auditing to ensure the security of the datacenter.
E. Session Host OS: The Session Host OS is responsible for hosting the virtual desktops and applications that users access in the Azure Virtual Desktop environment. Microsoft is responsible for securing the Session Host OS by providing regular security updates and patches, as well as implementing security controls to prevent unauthorized access to the OS. As a security personnel, you are not responsible for securing the Session Host OS.
In summary, as a security personnel in an organization using Azure Virtual Desktop, you are responsible for securing the App Security, Network Controls, and Virtualization Control Plane components in your Azure Virtual Desktop deployment to meet the specific security needs of your organization.