Forum Discussion

yywong's avatar
yywong
Copper Contributor
Nov 10, 2021

Conditional Access per Hostpool under the same AD tenant

We would like to create a AVD farm that consists of a number of hostpools for different user access (e.g., internal users, partners, and etc...) within the company or for partners.

 

For instance, we can apply IP-whitelisting for a hostpool that only allows internal users to access from their office network?  And, setup another hostpool for partners that can be accessed from internet.

 

Currently, we can only apply the conditional access as a global policy for "Azure Virtual Desktop".  May I know whether and when Azure Virtual Desktop and Remote App will include the "per hostpool" policy as part of the features.

 

Thanks.

2 Replies

Sort By
  • Johan_Vanneuville's avatar
    Johan_Vanneuville
    Iron Contributor
    Nov 10, 2021
    Hey yywong,
    Why not put the conditional access policy on security group? Like this you can put other policies on the external users.
    • yywong's avatar
      yywong
      Copper Contributor
      Nov 10, 2021

      Johan_Vanneuville, thanks.

       

      Do you mean to use different NSG for different Hostpool?  Is it possible as the Hostpool in that NSG are internal IP-address?  Should it be the Azure Virtual Host gateway controlling the access.

       

      Thanks.

Resources