When managing virtual machines (VMs) in the Virtual Desktop Infrastructure (VDI), special attention is required for policy management of some types of VMs. In some cases, you will want a policy to deny services on a VM because it is not needed and will produce unnecessary network traffic.
A specific case is the Patch Service Domain. For certain types of VMs, you will want to set the policy configuration for the service to deny to prevent patch deployment on these virtual desktops since it is an unnecessary and expensive exercise.
The following sections provide some VDI background and describe how to configure your policy entitlement efficiently in this type of virtual environment. The sections covered include the following: