Skip to content
Menu
IT-DRAFTS
  • About
  • My Statistics at Microsoft Q&A
  • Privacy policy
IT-DRAFTS
March 26, 2024

Use Azure Bastion to protect Azure virtual machines

Azure Bastion is a managed PaaS service that allows you securely connect to your virtual machines over a TLS connection. This connectivity can be established from the Azure portal or through a native client to the private IP address on the virtual machine. Advantages of using Bastion include:

  • Azure virtual machines don’t need a public IP address. Connections are over TCP port 443 for HTTPS and can traverse most firewalls.
  • Virtual machines are protected against port scanning.
  • The Azure Bastion platform is constantly updated and protected against zero-day exploits.

With Bastion, you can control the RDP and SSH connectivity to your virtual machine from a single point of entry. You can manage individual sessions from the Bastion service in the Azure portal. You can also delete or force a disconnect of an on-going remote session if you suspect a user isn’t supposed to be connecting to that machine.

The following diagram shows the reference architecture for using Azure Bastion to protect Azure virtual machines.

To protect your Azure virtual machine, deploy Azure Bastion and begin using RDP and SSH to connect to your virtual machines with their private IP addresses.

 

Categories

ActiveDirectory AI Azure AzureDown Conditional Access Copilot CrowdStrike CyberAttacks Cybersecurity CybersecurityThreats DevOps DigitalTransformation DNS GDPRcompliance Howto Innovation insider licensing MFA Microsoft Microsoft365 Microsoft AI MicrosoftAzure Microsoft ML MicrosoftOffice Microsoft Product MS Entra MSteams network NewRelease Office2024 OfficeSuite OWASP PrivacyRights ProductivityTools sam Security software SoftwareUpdate TechNews Technology updates Windows Windows10 Windows11

Archives

  • June 2025
  • May 2025
  • February 2025
  • October 2024
  • September 2024
  • July 2024
  • June 2024
  • May 2024
  • April 2024
  • March 2024
No comments to show.

Recent Comments

Recent Posts

  • How to Create and Manage a Public DNS Zone in Azure via the Portal
  • Microsoft FrodoKEM: A Conservative Quantum-Safe Cryptographic Algorithm
  • Microsoft 365 Agents Toolkit: A Technical Deep Dive for Pro-Code AI Developers
  • Generative AI in Healthcare: From Pilots to Infrastructure
  • Multi-Agent Systems in Microsoft Copilot Studio: How AI Learns to Delegate
©2025 IT-DRAFTS | Powered by WordPress and Superb Themes!