Azure AD joined devices. Remote access to cloud server

Question

Hello!
I have a task to organize remote access to a linux server in the cloud from Azure AD joined Windows devices that are used at different points in Internet (not in local network).
Is there such a possibility that if a user is logged in with Azure AD account on a Windows 10/11 computer, then he gets transparent access to a remote server in the cloud?
I have only one thought on this: point-to-site VPN to linux server with VPN profile distribution to clients by Intune. But maybe there is some way to do it transparently so that you do not have to connect to the VPN manually every time you log in.

Answer 1

Hello @Andrew , Thank you for reaching out.

If I understand correctly, you have an Azure AD joined Windows devices that are used at different points in Internet and you want to set-up seamless (when a user logs-in) VPN connection from these devices to your Virtual Machines hosted on Azure.

I think you can explore the option of using the Always On feature of Azure VPN client. With Always On, the active VPN profile can connect automatically and remain connected based on triggers, such as user sign-in, network state change, or device screen active. You can set-up a user tunnel which connects only after users sign-in to the device.

Hope this helps! Please let me know if this solution does not work for you. We will gladly continue with our discussion. Thank you!