What is Azure Bastion?

Azure Bastion by Microsoft

What is it?

Azure Bastion is a service you deploy to connect to a virtual machine using your browser and the Azure portal. The Azure Bastion service is a fully platform-managed PaaS service that you provision inside your virtual network. It provides secure and seamless RDP/SSH connectivity to your virtual machines directly from the Azure portal over TLS. When you connect via Azure Bastion, your virtual machines do not need a public IP address, agent, or special client software.

Bastion provides secure RDP and SSH connectivity to all of the VMs in the virtual network in which it is provisioned. Using Azure Bastion protects your virtual machines from exposing RDP/SSH ports to the outside world while it keeps providing secure access using RDP/SSH.

Key benefits

-?????????RDP and SSH directly in Azure portal: using a single click

-?????????No Public IP required on the Azure VM

-?????????No hassle of managing Network Security Groups (NSGs)

-?????????Protection against port scanning

-?????????Protect against zero-day exploits. Hardening in one place only

Host scaling

Azure Bastion supports manual host scaling. You can configure the number of host instances (scale units) to manage the number of concurrent RDP/SSH connections that Azure Bastion can support.

Azure Bastion supports up to 50 host instances. Increasing the number of host instances lets Azure Bastion manage more concurrent sessions. Decreasing the number of models decreases the number of concurrent supported sessions. This feature is available for the Azure Bastion Standard SKU only.

For more details and clarifications, contact the experts: [email protected]