Azure Virtual Desktop Support for Trusted Launch Virtual Machines
We are excited to officially announce Azure Virtual Desktop support for Trusted Launch virtual machines! Deploying Trusted Launch virtual machines in your Azure Virtual Desktop environment allows you to improve the security posture of your virtual machines by protecting against advanced and persistent attack techniques. The key benefits are as follows:
- Protect against the installation of malware-based rootkits and boot kits with Secure Boot.
- Provide your VM with its own dedicated Trusted Platform Module instance with a vTPM.
- Protect Windows kernel-mode processes against injection and execution of malicious or unverified code with Hypervisor Code Integrity.
- Isolate and protect secrets so that only privileged system software can access them with Windows Defender Credential Guard.
- Ability to perform feature updates when using Windows 11 Enterprise or Windows 11 Enterprise multi-session.
There is now a Trusted launch virtual machines option under Security type when adding virtual machines in the host pool UI:
When the Trusted Launch virtual machines Security type is selected, you will also have the option to enable secure boot and vTPM:
To learn more about Trusted Launch virtual machines, please visit here.
Published on:
Learn moreRelated posts
Microsoft Purview compliance portal: Endpoint Data Loss Prevention – Endpoint DLP support classification of Azure RMS protected Office documents
Endpoint DLP can now classify Office files stored in Windows devices that have Azure RMS protection applied. Classification will be triggered ...
AI Builder – Use your own generative AI model from Azure AI Foundry in Prompt builder in Copilot Studio
We are announcing the ability to use your own generative AI model from Azure AI Foundry in prompt builder. This feature has reached general av...
Azure SDK Release (August 2025)
Azure SDK releases every month. In this post, you'll find this month's highlights and release notes. The post Azure SDK Release (August 2025) ...
Azure Developer CLI (azd) – August 2025
This post announces the August release of the Azure Developer CLI (`azd`). The post Azure Developer CLI (azd) – August 2025 appeared fir...
Azurite: Build Azure Queues and Functions Locally with C#
Lets say you are a beginner Microsoft Azure developer and you want to : Normally, these tasks require an Azure Subscription. But what if I tol...
Data encryption with customer-managed key (CMK) for Azure Cosmos DB for MongoDB vCore
Built-in security for every configuration Azure Cosmos DB for MongoDB vCore is designed with security as a foundational principle. Regardless ...
Azure Developer CLI: From Dev to Prod with Azure DevOps Pipelines
Building on our previous post about implementing dev-to-prod promotion with GitHub Actions, this follow-up demonstrates the same “build ...
Azure DevOps OAuth Client Secrets Now Shown Only Once
We’re making an important change to how Azure DevOps displays OAuth client secrets to align with industry best practices and improve our overa...