Jun 08 2021 07:54 PM
My customers are asking for improvements in the authentication of the WVD App
The current WVD App stores authentication information for the time specified in the Conditional Access(in my case : 1 hour), even if you shut down the app or reboot your PC once it is authenticated
My customers want the credential removed when the WVD app is closed
Because they want to use the WVD app on a public PC, so they think that maintaining the credential for an hour with conditional access can cause serious security problems
After searching several documents, I found that the only way to control the cookie values of the tokens stored in the app is only the app
Link: https://docs.microsoft.com/en-us/azure/active-directory/enterprise-users/users-revoke-access
"Once an application issues its own session token, access to the application is governed by the application's session. At this point, the user is affected by only the authorization policies that the application is aware of.
The authorization policies of Azure AD are reevaluated as often as the application sends the user back to Azure AD. Reevaluation usually happens silently, though the frequency depends on how the application is configured. It's possible
that the app may never send the user back to Azure AD as long as the session token is valid.
For a session token to be revoked, the application must revoke access based on its own authorization policies. Azure AD can't directly revoke a session token issued by an application"
Is it possible to change the WVD app to delete information about credential when it is closed or "unsubscribe"?
And my customers have one more requirement
Citrix and VMware Horizon View that is our competitor offer the option for end users can reboot VM by themselves
This is a very convenient way for end users to solve these problems most easily if a simple problem occurs in the VM
By adding the reboot option in the WVD app, it seems that simple issues in VM can be solved very easy by end users.
Thank you
Jun 10 2021 11:51 AM
Jun 11 2021 10:32 AM