Azure Bastion Service

Azure Bastion- In a nutshell it’s a jump box as service. Azure Bastion however is sightly different and way more secure.

by | Published: | Updated:

Microsoft recently announced a new service named Azure Bastion.

In a nutshell it’s a jump box as service. A jump box for those not familiar with the term is a VM that allows external users to access it and from there they can “jump” to internal VM’s . Now, in reality a regular jump box is really not that secure, as you are exposing a resource that has access to internal resources.

Azure Bastion however is sightly different and way more secure. Once deployed it allows either RDP or SSH access to Azure Vm’s in the same Vnet. However, you do not connect directly to the Jump Box, instead you first login to the Azure prtal, prefabbly using MFA (Multi Factor Authentication) you then choose the VM and click connect with Bastoin, the connectoin to that VM is then initiated over a secure HTML 5 with HTTPS channel via the browser.

So the connection is first secured with MFA via login to the Azure portal and then traffic is secured over HTTPS using HTML 5.

 

Security Wise:

Making this the perfect solution to administrate your Azure VM’s without the hassle of VPN or other complex solution’s.

Gill Gross

About the Author

Gill Gross - Azure Lead | Microsoft Azure P-TSP at U-BTech Solutions

Top Specialist in Azure, Cloud Tech, Microsoft Solutions and more.

comments powered by Disqus