Use Local RDP Client to Bastion into VM

Question

Use Local RDP Client to Bastion into VM

Razzi29 336

Is there a way I can use the local Remote Desktop client on Windows to RDP to a Bastion connection into a VM hosted on Azure? I do not want to keep using the web portal as I sometimes find it unreliable and disconnect from time to time. I want to be able to use local RDP clients.

Manu Philip 20,206 Reputation points MVP Volunteer Moderator

2022-11-06T18:46:44.867+00:00

Azure Bastion uses an HTML5 based web client and the session is establishing through RDP/SSH over TLS on port 443. This enables the traffic to traverse firewalls more securely. With this specialty, Azure Bastion can't establish a connection through rdp application which supports remote desktop connection through port 3386

RDP and SSH through the Azure portal can get to the session directly in the Azure portal using a single-click seamless experience. Here is the implementation details:

----------

--please don't forget to upvote and Accept as answer if the reply is helpful--

Accepted answer

0 additional answers

Your answer

Manu Philip 20,206 Reputation points MVP Volunteer Moderator

2022-11-06T18:46:44.867+00:00

Azure Bastion uses an HTML5 based web client and the session is establishing through RDP/SSH over TLS on port 443. This enables the traffic to traverse firewalls more securely. With this specialty, Azure Bastion can't establish a connection through rdp application which supports remote desktop connection through port 3386

RDP and SSH through the Azure portal can get to the session directly in the Azure portal using a single-click seamless experience. Here is the implementation details:

----------

--please don't forget to upvote and Accept as answer if the reply is helpful--

Answer 1

Hello @Razzi29 ,

Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.

I understand that you would like to use the local Remote Desktop client on Windows to RDP to a Bastion connection into a VM hosted on Azure.

With the new Azure Bastion native client support, available with Standard SKU, you can now:

Connect to your target Azure virtual machine via Azure Bastion using Azure CLI and a native client on your local machine.
Log into Azure Active Directory-joined virtual machines using your Azure Active Directory credentials.
Access the features available with your chosen native client (ex: file transfer).

Refer : https://azure.microsoft.com/en-in/updates/general-availability-azure-bastion-native-client-support/

The native client feature lets you connect to your target VMs via Bastion using Azure CLI, and expands your sign-in options to include local SSH key pair and Azure Active Directory (Azure AD).
Refer : https://learn.microsoft.com/en-gb/azure/bastion/connect-native-client-windows

NOTE : This configuration requires the Standard SKU tier for Azure Bastion.

So, you can simply upgrade your Azure Bastion host to the Standard SKU which supports more features such as native client etc.

To enable Native Client Support on an existing Bastion deployment, please refer the below doc:
https://learn.microsoft.com/en-us/azure/bastion/connect-native-client-windows#to-modify-an-existing-bastion-deployment

Or you can deploy a Bastion manually with the Native Client Support feature addition by following the below doc:
https://learn.microsoft.com/en-us/azure/bastion/connect-native-client-windows#to-deploy-bastion-with-the-native-client-feature

Kindly let us know if the above helps or you need further assistance on this issue.

----------------------------------------------------------------------------------------------------------------

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Share via

Use Local RDP Client to Bastion into VM

0 additional answers

Your answer