Azure Bastion
An Azure service that provides private and fully managed Remote Desktop Protocol (RDP) and Secure Shell (SSH) access to virtual machines.
242 questions
1 answer
Azure NSG rules for Azure Bastion
I am looking for the outbound ports from the VM subnet required for Azure Bastion service to function. I have found this MS Article, but this only applies to the NSG applied to the Bastion subnet. I have a rule [4096]: DenyAllOutbound…
asked 2022-09-08T13:26:50.883+00:00
Aaron Krytus
1
Reputation point
commented 2024-01-05T16:20:13.2166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 22%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
Chris
0
Reputation points
1 answer
One of the answers was accepted by the question author.
Bastion only Custom Role based access
There is a requirement to allow RDP access to a limited set of VMs on Azure; we use Bastion for admins; but for these particular users I ONLY want to give them the ability to use Bastion on the portal and then RDP to the servers. My question is; which…
1 answer
One of the answers was accepted by the question author.
Having issue in accessing VMs through Bastion in the Hub and Spoke Architecture.
hello experts! I have three subscriptions in one tenant and I have created a Hub and spoke architecture for them. As you can see in the screenshot, my first two subscriptions are SPOKE and the last one is HUB I have configured Bastion in the Hub and…
asked 2023-12-18T07:04:17.18+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 43%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENP%3C/text%3E%3C/svg%3E)
Nidhi Priya
386
Reputation points
accepted 2023-12-21T06:16:12.5666667+00:00
Nidhi Priya
386
Reputation points
1 answer
One of the answers was accepted by the question author.
Delete bastion and subnet in Azure
There is a Virtualnet and a scaleset VM under a resource group. Inside a Vnet there was a subnet created already. On top of that i created another subnet named as AzureBastionSubnet and deployed the bastion for a scaledset VM. Now i want to know how to…
asked 2023-09-04T17:29:22.39+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 31%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES4%3C/text%3E%3C/svg%3E)
SeyedIsmailMohamedSalih-4169
20
Reputation points
commented 2023-12-20T19:29:46.12+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 89%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBR%3C/text%3E%3C/svg%3E)
Bruce Robbins
0
Reputation points
1 answer
One of the answers was accepted by the question author.
Deploy Azure Bastion in the Hub and Spoke architecture?
Hello experts! I want to deploy the Azure Bastion in the Hub Vnet which is in the subscription A. How we can deploy and configure the Bastion so that every Server/ VM present in the Spoke uses the Bastion of the Hub? Remember that we have multiple…
asked 2023-12-14T03:43:32.42+00:00
Nidhi Priya
386
Reputation points
accepted 2023-12-14T06:32:19.8266667+00:00
Nidhi Priya
386
Reputation points
0 answers
impossible de se connecter à une VM
Connection Error Log in failed. Please reconnect and try again. quelqu'un peut-il m'aider svp ?
asked 2023-11-30T18:36:57.0633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 96%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPG%3C/text%3E%3C/svg%3E)
Philippe GUERIN
0
Reputation points
commented 2023-12-11T09:51:24.0733333+00:00
GitaraniSharma-MSFT
47,591
Reputation points Microsoft Employee
0 answers
RDP to Azure VM via native Client Bastion with MFA Enabled
Hi, Our objective is to connect to Azure VM using Bastion Host native client via Azure CLI with MFA enabled. The VM we are accessing is hybrid joined. We are able to get pass bastion host with MFA sucessfully prompted but facing error thereafter. Anyone…
asked 2023-07-31T04:38:43.05+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 55.00000000000001%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENP%3C/text%3E%3C/svg%3E)
Niven Peter
86
Reputation points
commented 2023-12-01T11:56:57.17+00:00
KapilAnanth-MSFT
35,246
Reputation points Microsoft Employee
6 answers
Azure Bastion host using Azure Active Directory credentials..
Are we able to access VM via Azure Bastion host using Azure Active Directory credentials?? I have followed instructions to set bastion up and still getting the bellow error. I am able to sign in using the admin credentials but not the Azure AD…
asked 2022-08-08T20:46:15.947+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 99%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Cesar Martinez
21
Reputation points
answered 2023-11-30T23:25:35.03+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 33%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMZ%3C/text%3E%3C/svg%3E)
Max Zamarripa
5
Reputation points
1 answer
One of the answers was accepted by the question author.
How to use Ansible with Azure Bastion
Without azure bastion, I create my own vm named 'bastion' and install ansible within the bastion host to provision my vms in that vnet. However, I tried to use Azure bastion service but confused on where to run ansible and there is no way for me to…
asked 2023-10-10T20:23:14.1066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 55.00000000000001%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETN%3C/text%3E%3C/svg%3E)
Thakee Nathees
20
Reputation points
commented 2023-11-29T01:59:35.25+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 76%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EQ%3C/text%3E%3C/svg%3E)
quiescer
0
Reputation points
1 answer
One of the answers was accepted by the question author.
I have a prod and non prod environment, I want to create one Basion solution for both environment, not sure if that's a good or best practice?
I have a prod and non prod environment, I want to create one Bastion solution for both environment, not sure if that's a good or best practice?
asked 2023-11-27T07:18:05.8966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 92%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENT%3C/text%3E%3C/svg%3E)
Nazeem T
60
Reputation points
edited the question 2023-11-27T07:24:19.2866667+00:00
GitaraniSharma-MSFT
47,591
Reputation points Microsoft Employee
2 answers
How does Azure Bastion turn off and stop deductions?
How does Azure Bastion turn off and stop deductions?
asked 2022-11-12T03:40:18.933+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 54%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZ%3C/text%3E%3C/svg%3E)
ZQZ
1
Reputation point
commented 2023-11-23T13:25:25.6466667+00:00
GitaraniSharma-MSFT
47,591
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure Bastion Host, Azure Firewall, Azure RedHat Openshift
Dear Team, Hope you are doing well. We are working with a vendor who will be developing application on Azure Red openshift cluster. We have to give them secure access to ARO and at the same time access to internet to download some software on virtual…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 85%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENO%3C/text%3E%3C/svg%3E)
8 answers
Azure Bastion fails to connect over RDP - Black Screen
I'm hoping somebody can help. I have tried to setup Bastion in my subscription and am hitting the following error on any VM I try to connect to. When I try to connect it opens a new browser window with black screen and to in the lower right corner I get…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 11%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDK%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 95%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAT%3C/text%3E%3C/svg%3E)
1 answer
Login to Windows virtual machine in Azure using Azure AD account
Hi all, How do I go about enabling "Log in with Azure AD" after creating the Azure VM? Please help!
asked 2023-09-06T07:51:17.1433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 62%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
AB123
351
Reputation points
commented 2023-11-01T18:12:34.0033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 81%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECV%3C/text%3E%3C/svg%3E)
Corbin Viars
0
Reputation points
1 answer
When trying to connect to my Ubuntu 22.04 server Virtual Machine, my password seems incorrect. After resetting the password in the portal the connection is established again.
I'm deploying my VMs (Ubuntu 22.04 server) using PowerShell and Bicep. When trying to log in after a successful deployment using Bastion, the connection cannot be established. The browser shows the following message: Login failed. Please reconnect and…
asked 2023-10-30T13:40:35.3233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 84%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMB%3C/text%3E%3C/svg%3E)
Martijn Beenker
0
Reputation points
answered 2023-10-31T20:19:27.01+00:00
deherman-MSFT
33,626
Reputation points Microsoft Employee
1 answer
Can I get wavied if I miss turn on Bastion and did not use it ?
I start my account from a free acount and try to learn for AZ-900 / 104/ 204, after learning Virtual Machine I turn on it and connecto few time after that I did not use it, but I forgot to remove it, and today just saw a huge cost associate on it, can I…
asked 2023-10-13T07:02:50.71+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 27%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBH%3C/text%3E%3C/svg%3E)
BARRY HUANG
0
Reputation points
commented 2023-10-27T23:07:54.78+00:00
Andreas Baumgarten
96,926
Reputation points MVP
2 answers
One of the answers was accepted by the question author.
Unable to connect to VM using Azure Bastion in the Portal
I have setup an azure vm that is Microsoft Entra joined with Bastion configured for the vnet. I can login to the vm via the local admin account I created when the vm was built. I also enabled Azure for Windows login and user has been given the role for…
asked 2023-09-26T19:47:14.0433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(227.2, 31%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
Jimmy
30
Reputation points
edited a comment 2023-10-20T23:14:02.34+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 31%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVH%3C/text%3E%3C/svg%3E)
Vince Hardwick
20
Reputation points
2 answers
I want to implement an Azure solution for 2VMs in the same Virtual Network to communicate together. VM1 has a public IP and VM2 a private IP and I want to be able to SSH into VM2 from VM1 to install a database application, how can I achieve this?
I want to implement a solution for an application server (VM1) and a database server (VM2) which allows me to SSH into VM2 from VM1 in the same Virtual Network. VM1 has a public IP address and ports 22 & 80 are allowed in the NSG Group while VM2 has…
asked 2023-10-06T18:41:04.03+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 42%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
Mauyon Akinola
0
Reputation points
commented 2023-10-12T18:34:48.13+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 33%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
Mauyon Akinola
0
Reputation points
2 answers
One of the answers was accepted by the question author.
Network architecture
Hi, I'm in my research on networking architecture. Is there any official documentation and architecture to deploy point-to-site VPN to Azure Bastion and lastly to the server. Your concern and fast replies on this problem highly appreciated. Thank you.
asked 2023-09-22T08:40:41.4433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 8%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENA%3C/text%3E%3C/svg%3E)
NUR AISHAH BINTI MOHD RAHIM
20
Reputation points
accepted 2023-10-12T05:30:26.0333333+00:00
NUR AISHAH BINTI MOHD RAHIM
20
Reputation points
2 answers
Why does JIT open NSG ports to ANY IP address?
We've set up Just-in-Time access to our VM's using Azure Security Center, and also use Bastion to access machines within a subnet. I assumed everything was locked down securely. However for one public-facing VM, a connection was requested using…
asked 2021-09-30T10:26:04.647+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 69%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETG%3C/text%3E%3C/svg%3E)
The Guy From Eleven
6
Reputation points
answered 2023-09-27T22:33:42.7333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 38%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDO%3C/text%3E%3C/svg%3E)
Dan Oldenkamp
6
Reputation points