AVD now supports Azure Compute Gallery custom images with Trusted Launch enabled

Azure Virtual Desktop now supports provisioning Trusted Launch virtual machines with custom images stored in an Azure Compute Gallery. Trusted Launch protects against advanced and persistent attack techniques by combining technologies which can be independently enabled, such as Secure Boot and a virtual Trusted Platform Module (vTPM.

Key benefits of Trusted Launch virtual machines are:
• Protect against the installation of malware-based rootkits and bootkits with Secure Boot.
• Provide your VM with its own dedicated Trusted Platform Module instance with a TPM 2.0 compliant vTPM.
• Protect Windows kernel-mode processes against injection and execution of malicious or unverified code with Hypervisor Code Integrity.
• Isolate and protect secrets so that only privileged system software can access them with Windows Defender Credential Guard.

Please review the Trusted Launch and Azure Compute Gallery documentation for more information on those capabilities.