1. Managed identity: A managed identity provides an identity for applications to use when connecting to resources that support Azure AD authentication. In this scenario, App1 is an application that runs on the session host virtual machines (Host1 and Host2). Therefore, to allow App1 to use this capability, the managed identity must be enabled on the session host virtual machines themselves.
2. Clipboard redirection: Clipboard redirection is a Remote Desktop Protocol (RDP) feature. In Azure Virtual Desktop, RDP properties (which control features like clipboard, drive, and printer redirection) are configured at the Host Pool level. Applying this setting to Pool1 will enable clipboard redirection for all sessions on the hosts within that pool, including sessions running App1.

Managed identity:

Microsoft Learn. (n.d.). Enable managed identities for session hosts. Retrieved November 13, 2025, from https://learn.microsoft.com/en-us/azure/virtual-desktop/managed-identities-session-hosts

Reference (Section): "Enable managed identities on session hosts" documentation states, "You can enable system-assigned or user-assigned managed identities on your Azure Virtual Desktop session host virtual machines (VMs)..." This confirms the identity is a property of the VM (Host1, Host2).

Clipboard redirection:

Microsoft Learn. (n.d.). Supported RDP properties with Azure Virtual Desktop. Retrieved November 13, 2025, from https://learn.microsoft.com/en-us/azure/virtual-desktop/rdp-properties

Reference (Section): The introduction states, "You can configure the RDP properties for a host pool..." The table under "Device redirection" lists redirectclipboard:i:value as a configurable property, confirming this setting is applied to the host pool (Pool1).