Azure Bastion

Azure Bastion provides a scalable, more secure and seamless easy-to-useRDP and SSH connectivity to your Azure Virtual Machines in your virtual networks.   With Azure Bastion, you do not need to assign public IP to your virtual machines for connecting to RDP/SSH to your virtual machines, thus protecting your virtual machine ports for RDP (3389) and SSH (22) gettingexposed to internet for RDP/SSH purposes.

More details about Azure Bastion is available in the Azure Bastion documentation page.

Please suggest how we can make Azure Bastion better. We really appreciate and treasure your precious feedback.

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  1. AAD Integration

    Integrate with AAD for authenticating directly with AAD joined Azure VMs.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  2. Recording Bastion sessions

    For some legal reasons, it can be useful and/or necessary to have RDP / SSH sessions recorded for later checks. Please have such feature added to Bastion roadmap.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Connection/Session  ·  Flag idea as inappropriate…  ·  Admin →
  3. Main site with list of VM's that you can access through Bastion

    When using URL of Bastion, after authentication, there should be site with list of all VM accessible with Bastion with option to enter credentials or use those from Azure.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Usability  ·  Flag idea as inappropriate…  ·  Admin →
  4. Integrate Bastion with Admin Center (Honolulu)

    Integrate Bastion with Admin Center (Honolulu) so you can view site through Bastion

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Usability  ·  Flag idea as inappropriate…  ·  Admin →
  5. Allow inbound 443 from the Internet to Bastion subnet

    Hi Azure team,

    Thanks for bring such great feature to us! :D

    As per the https://docs.microsoft.com/en-us/azure/bastion/bastion-nsg and our own test.

    We need to allow Inbound port 443 from Internet to the Bastion Subnet. From my understanding, the Bastion instance is only making connections from/to Azure portal. Is there any reason we need to open 443 to the Internet, instead of some tag like “AzureCloud”

    Thanks,

    Tim

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  6. Ability to Disable Clipboard for Complaince

    For compliance reasons, when dealing with sensitive data, we need the ability to disable the Clipboard.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  7. Waiting for reconnecting on machine restart

    There should be an button to reconnect sesion on machine restart

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Usability  ·  Flag idea as inappropriate…  ·  Admin →
  8. Preview of Boot diagnostics

    Boot diagnostics on some Bastion status page for available VM's

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Usability  ·  Flag idea as inappropriate…  ·  Admin →
  9. Allow us to access bastion via Peers/VPN

    Allow us to deploy Bastion Service to a central vnet and consume it over Peering or vNet to vNet VPNs. Lot's businesses are setting up Hub/Spoke models in Azure for Network segmentation and having to deploy a Bastion Service to each is cost prohibitive.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Connection/Session  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base