Hybrid (remote plus office work) BYOD users with Cloud PC and corporate network

%3CLINGO-SUB%20id%3D%22lingo-sub-3361945%22%20slang%3D%22en-US%22%3EHybrid%20(remote%20plus%20office%20work)%20BYOD%20users%20with%20Cloud%20PC%20and%20corporate%20network%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3361945%22%20slang%3D%22en-US%22%3E%3CP%3EWe%20have%20an%20office%20setup%20where%20each%20desk%20is%20configured%20with%20double%20monitors.%20Some%20desks%20have%20ethernet%20connectivity%20to%20corporate%20LAN%20whereas%20others%20connect%20to%20LAN%20using%20corporate%20WiFi.%20There%20is%20guest%20WiFi%20available%20too.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20are%20considering%20using%20W365%20Cloud%20PC%20as%20a%20replacement%20for%20company%20physical%20desktops.%20Users%20can%26nbsp%3B%20choose%20to%20have%20company%20managed%20physical%20laptop%20or%20a%20cloud%20PC%20which%20they%20can%20access%20from%20their%20own%20device.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EProblem%20is%20when%20the%20cloud%20PC%20users%20wants%20to%20come%20to%20office%2C%20they%20would%20want%20to%20connect%20their%20laptops%20to%20our%20double%20monitors.%20This%20means%20plugging%20in%20unmanaged%20personal%20devices%20to%20cables%20which%20have%20reach%20to%20our%20LAN.%20Even%20though%2C%20unmanaged%20device%20will%20fail%20to%20connect%20to%20LAN%2C%20I%20believe%20it%20still%20poses%20a%20security%20risk.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAnyone%20has%20come%20across%20a%20similar%20problem.%20Would%20love%20to%20hear%20your%20thoughts%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F491899%22%20target%3D%22_blank%22%3E%40Christiaan_Brinkhoff%3C%2FA%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-3361945%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3Eenterprise%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3400896%22%20slang%3D%22en-US%22%3ERe%3A%20Hybrid%20(remote%20plus%20office%20work)%20BYOD%20users%20with%20Cloud%20PC%20and%20corporate%20network%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3400896%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F79705%22%20target%3D%22_blank%22%3E%40Gurdev%20Singh%3C%2FA%3E%26nbsp%3B-%20Thanks%20for%20posting...%20an%20interesting%20discussion%20for%20sure.%20Like%20you%20mentioned%2C%20we've%20heard%20some%20customers%20separate%20by%26nbsp%3B%3CEM%3E%3CSTRONG%3Eonly%3C%2FSTRONG%3E%3C%2FEM%3E%3CEM%3E%26nbsp%3B%3C%2FEM%3Eusing%20WiFi%2C%20then%20deploying%20WiFi%20certificates%20to%20managed%20devices%20for%20the%20%22Trusted%22%20WiFi.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EWhat's%20available%20on%20the%20LAN%3F%20Is%20it%20required%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3412552%22%20slang%3D%22en-US%22%3ERe%3A%20Hybrid%20(remote%20plus%20office%20work)%20BYOD%20users%20with%20Cloud%20PC%20and%20corporate%20network%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3412552%22%20slang%3D%22en-US%22%3EThanks%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F305776%22%20target%3D%22_blank%22%3E%40Christian_Montoya%3C%2FA%3E.%20LAN%20has%20quite%20a%20few%20legacy%20applications%20some%20of%20which%20may%20be%20made%20available%20on%20cloud%20PC%20using%20on-premises%20connectivity.%3CBR%20%2F%3E%3CBR%20%2F%3EWe%20currently%20use%20the%20same%20setup%20where%20connectivity%20to%20LAN%20via%20WiFI%20is%20authenticated%20using%20certificates.%20May%20be%20we%20need%20to%20explore%20the%20same%20solution%20to%20also%20secure%20connectivity%20from%20wired%20ethernet.%3C%2FLINGO-BODY%3E
Frequent Contributor

We have an office setup where each desk is configured with double monitors. Some desks have ethernet connectivity to corporate LAN whereas others connect to LAN using corporate WiFi. There is guest WiFi available too.

 

We are considering using W365 Cloud PC as a replacement for company physical desktops. Users can  choose to have company managed physical laptop or a cloud PC which they can access from their own device. 

 

Problem is when the cloud PC users wants to come to office, they would want to connect their laptops to our double monitors. This means plugging in unmanaged personal devices to cables which have reach to our LAN. Even though, unmanaged device will fail to connect to LAN, I believe it still poses a security risk.

 

Anyone has come across a similar problem. Would love to hear your thoughts?

 

@Christiaan_Brinkhoff

 

 

2 Replies

@Gurdev Singh - Thanks for posting... an interesting discussion for sure. Like you mentioned, we've heard some customers separate by only using WiFi, then deploying WiFi certificates to managed devices for the "Trusted" WiFi.

 

What's available on the LAN? Is it required?

Thanks @Christian_Montoya. LAN has quite a few legacy applications some of which may be made available on cloud PC using on-premises connectivity.

We currently use the same setup where connectivity to LAN via WiFI is authenticated using certificates. May be we need to explore the same solution to also secure connectivity from wired ethernet.