How can we improve Azure Automation service?

Allow VMs to communicate with DSC without public Internet connection

Can we allow Azure VMs to somehow communicate with Automation Accounts in the same subscription in order to implement DSC without requiring the VM to have an Internet connection? Since the IP address of the automation account changes so readily, I cannot create a specific NSG rule for automation accounts, though I would love to be able to use Azure DSC for our VMs. Today, I cannot due to the inabaility for me to lock down generic Internet traffic on internal-only VMs.

28 votes
Vote
Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)
You have left! (?) (thinking…)
Rob Wisehart shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

2 comments

Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)
Submitting...
  • Gary commented  ·   ·  Flag as inappropriate

    This is not just a problem with NSGs.
    Any server behind a Standard Internal Load Balancer cannot communicate with Automation without assigning it an unneeded public IP address.

Feedback and Knowledge Base