![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 53%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHS%3C/text%3E%3C/svg%3E)
Azure IoT Edge
An Azure service that is used to deploy cloud workloads to run on internet of things (IoT) edge devices via standard containers.
561 questions
Hello @Haeussler Siegfried ,
welcome to this moderated Azure community forum.
Azure IoT Edge gives you full control over all docker containers part of the Azure IoT Edge deployment manifest.
Azure IoT Edge has no mechanism for connecting with the underlying operating system.
Microsoft provides a separate solution named OSConfig. This is a separate tool living on the edge device, making use of the Azure IoT Edge credentials for a secure cloud connection.
You are free to use SSH to connect to your device but be aware you probably open this outbound port 22 so your edge device can be attacked from the outside world.
An alternative is using auto ssh. This creates an outbound tunnel to some endpoint in the cloud. Create a VM running in Azure accepting inbound SSH calls only from your edge devices (eg. using an IP filter). This VM should only accessible using an Entra ID so if your workers leave the company, your 'stepping stone' of 'jumpbox' is unavailable for them.
An simple and more versatile alternative is enabling your edge device with Azure Arc. Using azure Arc, your edge device becomes part of the Azure Portal, with eg. SSH, updates, policies, etc.
A complete example and walkthrough is seen here.
If the response helped, do "Accept Answer". If it doesn't work, please let us know the progress. All community members with similar issues will benefit by doing so. Your contribution is highly appreciated.