A Security Architect’s Diary
At 2:17 AM, the alert fired again. A new ghost session. But this time, the Conditional Access policy rejected it. securing cloud pcs and azure virtual desktop
Marta watched the logs live. The attacker had tried the same trick—a stolen token—but now, without a compliant, Intune-registered device, the session was stonewalled. A Security Architect’s Diary At 2:17 AM, the
Marta stared at the alert dashboard. It was 11:47 PM. The office was empty, but the Azure Virtual Desktop host pool was not. without a compliant
“If we don’t lock down the control plane, yes,” Marta said. “The Cloud PC is a ghost. You can’t handcuff a ghost. You have to lock the séance room.”