Microsoft reveals the best way to secure your Windows 365 cloud PC

More security features coming later this year, along with support for Windows 11

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

After lifting the lid on itsWindows 365desktop streaming platform, the software giant has shared guidance to help its enterprise customers secure their cloud PC instances.

Windows 365 is avirtualizationservice that lets users stream a Windows desktop along with all its apps to any of their devices, including those that run onmacOS,LinuxorAndroid, and from any location.

“All Cloud PCs, like their physical PC counterparts, come withMicrosoftDefender—securing the device beginning with the first-run experience,“wroteChristiaan Brinkhoff, Principal Program Manager for Windows 365.

Talking about their update policy, Brinkhoff added that all cloud PCs are provisioned using a gallery image that is kept updated with the latest cumulative updates forWindows 10.

Security in the cloud

Windows 365 is split into two subscription branches, namelyWindows 365 BusinessandWindows 365 Enterprise, and Brinkhoff has shared the guidance for both.

Designed for smaller businesses, users in the Windows 365 Business plan are automatically granted local admin rights, since such organizations usually lack a dedicated IT department.

To help such users secure their cloud PCs, Brinkhoff suggests following standard IT security practices to tune down the permissions of the users to that of standard users. He’s also shared how users can use the Microsoft Endpoint Manager to simplify this task.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

On the other hand, all cloud PCs in the Windows 365 Enterprise plan are enrolled in Microsoft Endpoint Manager by default, making them easier for IT admins to manage. Furthermore, all end users are added as standard users, with admins retaining the ability to elevate permissions on a per-user basis.

Brinkhoff shared that the team is working to includeWindows 11as part of Windows 365 offerings, once the next version of Windows is generally available later in the year, bringing with it additional security benefits such asTrusted Launchto improve the security of Azure virtual machines.

With almost two decades of writing and reporting on Linux, Mayank Sharma would like everyone to think he’sTechRadar Pro’sexpert on the topic. Of course, he’s just as interested in other computing topics, particularly cybersecurity, cloud, containers, and coding.

iStorage Group acquires Kanguru Solutions as it looks to expand security offering

Phishing attacks surge in 2024 as cybercriminals adopt AI tools and multi-channel tactics

Smeg Combi Steam Oven review: a multi-functional countertop oven that looks stunning and cooks well