All Posts

Automatically add or change Azure Active Directory computer objects on-demand

Hybrid joined AVD session hosts are great for working with conditional access, Intune (MEM), access to Azure files, and other AAD integrated services.

Honey-Potting in Azure and Unfavorable Account Names

As everybody knows, running a Windows system in Azure unprotected is not a good idea. To get access to an Azure VM, Azure Bastion or VPN are recommended.

Securing an app service, a key vault, and a database with private endpoints

A typical Azure application uses an app service representing the front end, a database to store the data and configuration settings, and a key vault to keep secrets (like the...

Azure Trusted Launch and Custom Images - even for AVD

Trusted launch for Azure virtual machines is currently in public preview ( The trusted launch has some benefits, like:

Debugging Azure Virtual Desktop errors/issues/network latency and bandwidth with an interactive Workbook

Correctly configured, Azure Virtual Desktop sends diagnostic data to a log analytics workspace (Azure Monitor). There are several logs containing data about the events in the backend:

WVDAdmin - Azure Windows Virtual Desktop Administration for CSP and Consulting Partners

Azure Windows Virtual Desktop Administration for CSP and Consulting Partners

Get alerted if Azure Virtual Desktop fails - AVD Monitoring and alerting with Loganalytics / Azure Monitor

Monitoring Azure Virtual Desktop is important to get insights into the performance and resource usage and alert if something generally goes wrong. Especially, getting alerted if something goes wrong is...

Azure Virtual Desktop: Reserved Instances or Scaling

A while ago, I wrote a blog post about saving money by smartly switching the disk types of Azure VMs. But what’s about using reserved instances instead of switching VMs...

How to use MSIX AppAttach without having computer accounts synced for Azure Virtual Desktop (AD synced and Azure Files)

Using MSIX AppAttach in Azure Virtual Desktop is great. To stage the MSIX AppAttach packages, the session host needs permission to read the package. If the package is placed on...

Directly connect session hosts with a 3rd party management environment

While working with Azure Virtual Desktop, I still miss some features that seem unavailable through Microsoft or maybe a 3rd party vendor. One of the features is that an admin/helpdesk...

AVD issue: SessionHost unhealthy SxsStack listener is not ready - Code -2147467259

A few days ago, I got an email from a customer concerning that a lot of Azure Virtual Desktop (AVD) session hosts showing an error message from the internal health...