Forum Discussion
Azure Virtual Desktop - Per User External User Licensing?
- Both remote apps and desktops can be accessed by the external users. There is an extra cost for allowing access to desktops over only allowing remote app access. More info can be found here: https://docs.microsoft.com/en-us/azure/virtual-desktop/remote-app-streaming/licensing
Microsoftjanzhang AVD does not support B2B or B2C yet. The identities remain the same as any other AVD deployment, they must exist in ADDS and Azure AD. More info can be found here: Set up managed identities in Azure Virtual Desktop - Azure | Microsoft Docs
janzhang External uses in AAD always have a UPN that indicates this.
So if I invite mailto:mwolfson@microsoft.com to my tenant as a Guest account (meaning they will authenticate to their own AAD and provide my tenant a token their UPN from my AAD tenant will be
mwolfson_microsoft.com#EXT#@mdwsoft.onmicrosoft.com
Pretty easy to distinguish and further you wouldn't have an AD identity if you are using Hybrid Join as most AVD customers use today, meaning the VM is joined to the domain and AD credentials on the VM must match the UPN in AAD.- JasonMastenjanzhang yes, your link is correct. Once the user has been assigned to an app group, they will be able to connect with the client. When you enroll your subscription for Remote App Streaming, any user connecting to AVD in that subscription will be charged for the Remote App Streaming service. So you would be billed double if you deploy your internal users to the same subscription.
- Thanks Jason so technically those users are not external users/Guest users. Inviting guest(external) users to our Azure AD, and assign them to WVD app group is still not possible?
- JasonMastenjanzhang The recommended architecture for Remote App Streaming is to setup a dedicated tenant and subscription for your external users. So following that approach, you would never mix your internal and external users together in the same AD / Azure AD. Users cannot be invited in to use AVD (No B2B and B2C). https://docs.microsoft.com/en-us/azure/virtual-desktop/remote-app-streaming/architecture-recs#deploying-azure-virtual-desktop-for-users-outside-your-organization
