At Ignite 2019, Microsoft announced the general availability of Azure Bastion, a fully managed platform as a service (PaaS) service that provides more secure and seamless RDP and SSH access to virtual machines directly through the Azure portal. Azure Bastion is provisioned directly in a customer’s virtual network (VNet) and supports all VMs in their virtual network (VNet) using SSL without any exposure through public IP addresses.
Previously available in preview, Azure Bastion is now generally available in six Azure regions—West U.S., East U.S., West Europe, South Central U.S., Australia East, and Japan East.
It’s easy to initiate a remote Azure Bastion session directly from Azure portal. Azure Bastion then brokers a more secure RDP/SSH session to the target virtual machines in the virtual network. Azure Bastion always connects to the target VM in the virtual network over its private IP.
- Azure Bastion documentation is here:
https://docs.microsoft.com/en-us/azure/bastion/ - Azure Bastion “How to Guide” is here:
https://docs.microsoft.com/en-us/azure/bastion/bastion-create-host-portal - Azure Bastion FAQ is here:
https://docs.microsoft.com/en-us/azure/bastion/bastion-faq
Azure Bastion videos are here:
- Azure Friday – “How to use Azure Bastion to connect securely to your Azure VMs”
Using a bastion host can help limit threats such as port scanning and other types of malware targeting your VMs. Ashish Jain joins Scott Hanselman to show how Azure Bastion gives you secure and seamless RDP and SSH access to your virtual machines. Now you can securely access your VMs over SSL from the Azure portal and without exposing public IP addresses.- Azure Bastion overview – https://aka.ms/azfr/583/01
- Azure Bastion docs – https://aka.ms/azfr/583/02
- Deploy Azure Bastion in an Azure Virtual Network (sample ARM template) – https://aka.ms/azfr/583/03
- Create a free account (Azure) – https://aka.ms/azfr/583/free
https://www.youtube.com/watch?v=WElUQm02BTU
- Azure Power Lunch – “Azure Bastion” (37min)
Azure Bastion (Preview) is a fully managed PaaS service that provides secure and seamless RDP and SSH access to your virtual machines directly through the Azure Portal. Azure Bastion is provisioned directly in your Virtual Network (VNet) and supports all VMs in your Virtual Network (VNet) using SSL without any exposure through public IP addresses.
kurtsh
Kurt Shintaku's Blog 