Azure Bastion Tutorial & FAQs

Photo by ThisisEngineering RAEng on Unsplash

Azure Bastion is a fully managed service offered by Microsoft Azure that provides secure and seamless RDP and SSH connectivity to your virtual machines directly through the Azure portal. This service eliminates the need for a VPN connection or a public IP address for your virtual machines.

In this tutorial, you’ll learn about the key features and benefits of Azure Bastion, how it works, and the steps to set it up in your Azure environment. Whether you are a cloud administrator or a developer, this video provides a comprehensive understanding of Azure Bastion and how it can simplify your remote access to virtual machines. After watching the video, check out some FAQs about Azure Bastion below the video.

Watch the Azure Bastion tutorial:

Get a coach. Learn Azure faster.

Work with an Azure expert one-on-one to learn Azure cloud. Plus, get training content and hands-on labs for no additional cost.

Learn more

Azure Bastion FAQs

What is Azure Bastion and how does it work?

Azure Bastion is a service that provides remote connectivity to virtual machines in Azure by using the Azure portal. It allows users to connect to Windows or Linux machines using RDP or SSH over TLS sessions. Azure Bastion is a managed service from Microsoft, which means that users don't need to worry about hardening or managing the virtual machines.

What are the different connectivity options available for virtual machines in Azure?

The different connectivity options available for virtual machines in Azure are RDP (Remote Desktop Protocol) for Windows machines, SSH (Secure Shell Protocol) for Linux machines, and Azure Bastion, which supports both RDP and SSH.

What is the architecture of Azure Bastion?

Azure Bastion has a user who logs into the Azure portal using their Azure Active Directory identity. The TLS session is then forwarded from the portal to the public IP address of the Azure Bastion service, which has a public and private IP address. There are load balancers and other offerings in the backend that connect to either the basic or standard plan of Azure Bastion. The private IP of Azure Bastion is then used to connect to RDP for Windows machines or SSH for Linux machines.

What are the differences between the standard plan and basic plan for Azure Bastion?

The basic plan allows up to two virtual machines, while the standard plan allows up to 50 virtual machines. The basic plan has limited features, while the standard plan offers more features such as IP filtering, custom DNS, and RDP/SSH over HTTPS.

Can you connect to on-premises virtual machines using Azure Bastion?

Yes, you can connect to on-premises virtual machines using Azure Bastion if you have a side-to-side or point-to-site VPN connection configured. However, you will need a standard plan for this feature.

Accelerate your career with a cloud coach. Learn Azure directly from certified experts to stop wasting time on training you don't need. Find out more.

Get new blogs in your inbox