What connection type is the most secure to access Azure Virtual Desktop, and why?

Msyben (Admin) 20 Reputation points
2025-01-27T16:47:59.57+00:00

We are looking to create an internal Azure Virtual Desktop solution and are wondering about the differences in security between the available connection methods (Windows App, via the Browser)? What are the differences in connection security between the Windows App and a Browser connection for Azure Virtual Desktop? Is one more secure than the other? Thanks for the Assistance!

Azure Virtual Desktop
Azure Virtual Desktop
A Microsoft desktop and app virtualization service that runs on Azure. Previously known as Windows Virtual Desktop.
1,669 questions
0 comments No comments
{count} votes

Accepted answer
  1. hossein jalilian 9,855 Reputation points
    2025-01-27T17:17:22.6833333+00:00

    Thanks for posting your question in the Microsoft Q&A forum.

    The most secure connection type for Azure Virtual Desktop is using the Windows App with additional security measures implemented

    • Encryption: Both the Windows App and browser connections use TLS for encryption. AVD uses TLS 1.2 for all connections initiated from clients to the Azure Virtual Desktop infrastructure components
    • Reverse Connect Transport: AVD utilizes reverse connect transport for establishing remote sessions and carrying RDP traffic. This method doesn't use a TCP listener for incoming connections, instead using outbound connectivity to the AVD infrastructure over HTTPS
    • Enhanced Security Features: The Windows App allows for easier implementation of additional security measures, (Multi-factor Authentication, Conditional Access, Private Link)
    • Application Control: With the Windows App, you can implement stronger application control through Windows Defender Application Control or AppLocker, ensuring only trusted applications are executed.
    • Endpoint Security: The Windows App allows for better integration with endpoint security solutions like Microsoft Intune, providing more comprehensive device management and security controls

    Please don't forget to close up the thread here by upvoting and accept it as an answer if it is helpful

    1 person found this answer helpful.
    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.