Microsoft's cloudy Windows Virtual Desktop: It fills a gap, but there are plenty of annoyances

You shall not PaaS? An Ask Me Anything reveals common gripes


Microsoft's Windows Virtual Desktop (WVD), an Azure-hosted VDI (Virtual Desktop Infrastructure), plugs an obvious gap in the company's cloud offerings, but comes with its fair share of annoyances too, many of which came up in a recent Ask Me Anything laid on by the team.

WVD went into public preview in March, six months after it was announced at the Ignite shindig in September last year.

Windows Virtual Desktop blends hosted VMs with managed services and access to on-premises resources

Windows Virtual Desktop blends hosted VMs with managed services and access to on-premises resources.

It is now feature-complete and expected to be generally available soon – Microsoft has said this will be before the end of the year.

In November 2018, Microsoft acquired FSLogix, a specialist in profile management. FSLogix profile containers integrate with WVD to improve the performance and capabilities of roaming profiles, giving each user persistent storage and enabling features such as OneDrive files on demand.

WVD makes a lot of sense for mobile users who need access to Windows desktop applications. It is more secure and more manageable than using a laptop, provided you can rely on a strong internet connection.

Redmond has essentially lifted and shifted its existing Remote Desktop Services to its cloud, complete with a dependency on Active Directory. This means you cannot just link your WVD environment to Azure Active Directory (AAD), used by Office 365. You either have to set up Azure AD Domain Services, or use Azure AD Connect to link to an on-premises Active Directory. If you go the AD Connect route, you will need a site-to-site VPN so that WVD can talk to a Domain Controller (DC). The most common setup seems to include AD Connect, site-to-site VPN and a DC on Azure.

How about just using AAD? "We've gotten lots of feedback on this and we are investigating," said Microsoft Program Manager Christian Montoya.

Setting up WVD is still easier than deploying an on-premises Remote Desktop Services solution. Microsoft hosts services like the Gateway and load balancer for you.

A common complaint, though, is that managing WVD is challenging. It is "difficult to do seemingly simple tasks such as adding users or devices to a pool," said one admin.

PowerShell is one answer. The other is to install a web application for managing WVD resources, which you can find here. The app is free, but you will have to pay to run it on your Azure tenant. Admins feel that this functionality should be built into the Azure Portal, and they have a reasonable point.

Why does video not work in Teams, Microsoft's collaboration solution? This question revealed two things. One, that camera redirection, enabling WVD to use the camera on your device, is not enabled by default but requires some PowerShell. Second, a technology called media offload, which will improve performance, will not be in the initial release but will be a "fast-follow" feature, said the team.

Will WVD support thin client devices such as those from Dell, or Linux clients? The answer is: not immediately. "We are working with partners like Dell to support thin clients," said senior Program Manager David Belanger. "At GA, our goal is to generally support thin clients running Windows 10 IoT Enterprise. We're also working with partners to support Linux based thin clients in the future."

The mitigating factor is that WVD does support an HTML5 client, which supports browsers on Linux and on Chrome OS – though not on mobile devices. There will also be clients for iOS and Android.

There is an issue with regionalisation. You can host WVD VMs in any region, but the management service will initially run only in the United States. "The performance in other Azure regions will improve rapidly in next 6+ months, as we deploy regional clusters," said the team.

It looks like WVD will follow Microsoft's usual pattern, with a number of shortcomings on launch that will be fixed later.

Despite everything, it is hard to see WVD not succeeding, for the licensing that comes free with the various Microsoft 365 subscriptions if nothing else. ®

Similar topics


Other stories you might like

  • Google Pixel 6, 6 Pro Android 12 smartphone launch marred by shopping cart crashes

    Chocolate Factory talks up Tensor mobile SoC, Titan M2 security chip ... for those who can get them

    Google held a virtual event on Tuesday to introduce its latest Android phones, the Pixel 6 and 6 Pro, which are based on a Google-designed Tensor system-on-a-chip (SoC).

    "We're getting the most out of leading edge hardware and software, and AI," said Rick Osterloh, SVP of devices and services at Google. "The brains of our new Pixel lineup is Google Tensor, a mobile system on a chip that we designed specifically around our ambient computing vision and Google's work in AI."

    This latest Tensor SoC has dual Arm Cortex-X1 CPU cores running at 2.8GHz to handle application threads that need a lot of oomph, two Cortex-A76 cores at 2.25GHz for more modest workloads, and four 1.8GHz workhorse Cortex-A55 cores for smaller tasks. This octa-core processor has an Arm-designed 20-core Mali-G78 MP20 GPU, and is fabricated using a 5nm node.

    Continue reading
  • BlackMatter ransomware gang will target agriculture for its next harvest – Uncle Sam

    What was that about hackable tractors?

    The US CISA cybersecurity agency has warned that the Darkside ransomware gang, aka BlackMatter, has been targeting American food and agriculture businesses – and urges security pros to be on the lookout for indicators of compromise.

    Well known in Western infosec circles for causing the shutdown of the US Colonial Pipeline, Darkside's apparent rebranding as BlackMatter after promising to go away for good in the wake of the pipeline hack hasn't slowed their criminal extortion down at all.

    "Ransomware attacks against critical infrastructure entities could directly affect consumer access to critical infrastructure services; therefore, CISA, the FBI, and NSA urge all organizations, including critical infrastructure organizations, to implement the recommendations listed in the Mitigations section of this joint advisory," said the agencies in an alert published on the CISA website.

    Continue reading
  • It's heeere: Node.js 17 is out – but not for production use, says dev team

    EcmaScript 6 modules will not stop growing use of Node, claims chair of Technical Steering Committee

    Node.js 17 is out, loaded with OpenSSL 3 and other new features, but it is not intended for use in production – and the promotion for Node.js 16 to an LTS release, expected soon, may be more important to most developers.

    The release cycle is based on six-monthly major versions, with only the even numbers becoming LTS (long term support) editions. The rule is that a new even-numbered release becomes LTS six months later. All releases get six months of support. This means that Node.js 17 is primarily for testing and experimentation, but also that Node.js 16 (released in April) is about to become LTS. New features in 16 included version 9.0 of the V8 JavaScript engine and prebuilt Apple silicon binaries.

    "We put together the LTS release process almost five years ago, it works quite well in that we're balancing [the fact] that some people want the latest, others prefer to have things be stable… when we go LTS," Red Hat's Michael Dawson, chair of the Node.js Technical Steering Committee, told The Register.

    Continue reading

Biting the hand that feeds IT © 1998–2021