For most businesses, keeping confidential information secure is of paramount importance. Keeping this information once proved challenging in regard to virtual sessions and online presentations. However, with the prevalence of remote work and virtual desktop solutions like Azure Virtual Desktop and Windows 365, ensuring the protection of sensitive information during screen sharing and presentations has become a critical aspect of cybersecurity. One notable feature that addresses this concern is screen capture protection.

Why Do We Need for Screen Capture Protection?

Because virtual sessions and online presentations have swiftly become the norm, the vulnerability screen captures of sensitive data has become apparent. Screen capture protection is a crucial measure to prevent unauthorized users from taking screenshots of your virtual session, preserving the confidentiality of information shared during online presentations or while working on Azure Virtual Desktop and Windows 365.


How do you enable screen capture protection with Azure Virtual Desktop and Windows 365


Enabling screen capture protection in Azure Virtual Desktop and Windows 365 involves a combination of Intune Configuration Service Provider (CSP) policies, conditional access configurations, and collaboration with the Defender security team. Below are the general steps to enable screen capture protection:


1. Intune Configuration Service Provider (CSP) Policy:

  • Access the Intune portal and navigate to Device Configuration.
  • Create a new profile or modify an existing one.
  • Within the profile settings, configure the CSP policy related to screen capture protection. Look for settings that allow you to enable and configure screen capture protection.


2. Conditional Access Configuration:

  • Integrate conditional access policies within Intune to add an extra layer of security.
  • Define conditions that users must meet to access and capture virtual sessions. This may include device compliance, user authentication, or other criteria.


3. Overlay Code of Conduct and Session Information:

  • Consider overlaying a code of conduct and session information on the screen during virtual sessions. This can be done through additional settings or policies within the virtual desktop environment.


4.  Collaboration with Defender Security Team:

  • Ensure collaboration with the Defender security team to integrate screen capture protection with Microsoft Defender.
  • Explore the features provided by Microsoft Defender, such as key logger detection, to enhance the overall security of virtual sessions.


5. Testing and Validation:

  • Before deploying these configurations in a production environment, conduct thorough testing in a controlled setting. Verify that screen capture protection is working as intended and does not interfere with normal operations.


6. Documentation and Communication:

  • Document the implemented configurations for future reference and share relevant information with end-users. Communicate any changes in security policies to ensure awareness and compliance.


7. Regular Updates and Monitoring:

  • Stay informed about updates and enhancements related to screen capture protection in Azure Virtual Desktop and Windows 365. Regularly monitor the security landscape and make adjustments to configurations as needed.



Screen capture protection is an essential component in fortifying the security of virtual sessions on Azure Virtual Desktop and Windows 365. By implementing Intune CSP policies, leveraging conditional access, and collaborating with the Defender security team, Microsoft has taken significant steps to address the concerns raised by users.

These advancements not only enhance security but also contribute to a safer and more reliable virtual desktop experience. As organizations continue to embrace remote work and virtual collaboration, prioritizing cybersecurity measures like screen capture protection becomes imperative in safeguarding sensitive information and maintaining a secure digital workspace.


Contact us to learn more about Windows 365


Andrew Reade