AMA: Windows in the Cloud - October 18, 2023

Thanks for joining us for this AMA: Windows in the Cloud! We'll see you next month - AMA: Windows in the Cloud - November 22, 2023.

In addition to the questions posted on this page, we also answer questions posted in reply to the event on LinkedIn and X/Twitter -- as well as open questions in the Azure Virtual Desktop and FSLogix Community. Here are the questions we answered today:

• From Marc -- We are new to AVD and are starting with configuring our first Hostpool in Azure, a pooled Hostpool with Windows 11 Multi-Session. The users are synced from a On-Prem AD to Entra ID. The personas are pretty simple and just use M365 Apps, FSLogix and 2 Business Apps. We know from Intune that doing a Hybrid-Join for Notebooks isn't a good idea and gives a lot more complexity. What is best practise for AVD in our case? Should we configure Hybrid-Join without having a DC in Azure or is it required to have one also in Azure to be able to configure GPO's or how do you managed the session host's? Configuring a AADDS does give me also more complexity in this case, right? - answered at 08:50.
• From Steve -- We have a strange issue with Windows 11 multisession. The environment consists of 22h2 and fslogix and Citrix. We build our images from code each time so they are consistent and build images for windows 10 and 11 from the same core code just with a few changes for windows 11 specific items. We use nonpersistent machines. The issue we are having with windows 11 which we do not see with windows 10 is that if a user profile exists and a machine is created fresh the first time a user logs on, their default built in apps like notepad, paint etc are missing from apps and cannot even be searched. If they log out and back on the apps then show up as new apps. Any ideas to troubleshoot and fix this? - answered at 32:30.
• From Anthony -- If a user signs out of a host pool, is it normal for them to be logged out of Office 365 and OneDrive as well? - answered at 34:45.
• From Raymond -- How can we give a full desktop experience to users while still making it so that only a few users can access specific applications (e.g. 100 users have access to the Remote Desktop session but only 10 can launch Office from the Start menu of their remote desktop sessions). This can be achieved with FSLogix app masking rule. We would like to explore the capabilities of MSIX app attach to providing similar masking feature. - answered at 41:25.
• From Volker -- For individual terminal servers, we set up a weekly virus scan on Sundays in order to subsequently detect viruses not detected with the real-time check. Now with the server farm and FSLogix, this is no longer the goal since the VHDXes of the users are not connected during the virus scan on Sundays and the Outlook mailboxes and local docs of the users are not connected. Is there already a solution to be able to check the private data of the users by a virus search? - answered at 47:10.
• From X/Twitter -- There is now an App Attach Toolkit for Visual Studio. Where can I find prereqs? Anything else to know about setup? - answered at 56:20.

Only one question:

1: When will FSLogix support installing Store apps and then leaving them installed? If I install MS To Do for example the next time the machine is rebooted or the user signs out the app is removed and not reinstalled. The only way I can find around this is to download the appx package and then use the following command DISM.EXE /Online /Add-ProvisionedAppxPackage to add the package as a system app.

If I had more time I would ask about performance issues but I am pressed for time.

Don't be shy, we're halfway through! Ask away, and don't forget to share information about use cases and scenarios you need to support. Post them here in the Comments.

Today's AMA will kick off live at 8:00 a.m. Pacific Time, but you can post your questions now here in the Comments.