Trace Id is missing
Skip to main content
Azure
Learn more about the launch of Azure Bastion Premium. Read the blog.
A close up of a white and orange object.

Azure Bastion

Secure remote access to your virtual machines.
Get started with Azure
OVERVIEW

Protect your virtual machines with more secure remote access

Azure Bastion is a fully managed service that provides more secure and seamless Remote Desktop Protocol (RDP) and Secure Shell Protocol (SSH) access to virtual machines (VMs) without exposure through public IP addresses.
  • Access all VMs within a local or peered virtual network through a single hardened access point. No public IP address is required on your VMs—using a Bastion host lets you open a more secure RDP/SSH connection using a private IP address.
    A screenshot of a computer showing Azure portal with private network details.
  • Use a Bastion host to help limit threats such as port scanning and other malware targeting your VMs. Because the host sits at the perimeter of your virtual network, you don’t need to worry about hardening each of your VMs.
  • Azure Bastion provides an integrated platform alternative to manually deploying and managing jump servers to shield your VMs. Deploy the Bastion host in just a few clicks to get up and running quickly. The service will begin setting up network security groups (ACLs) across your subnets to keep the IT secure.
    A close-up of a computer server.
  • Connect to your VMs in your local and peered virtual networks over TLS, port 443, the Azure portal, or a native client. This clientless RDP and SSH connectivity enables you to connect from anywhere—on any device or platform—without an additional agent running in your VMs.
    A close-up of a woman with her hand on her chin.
FEATURES

Cutting-edge capabilities

Azure Bastion provides more secure and seamless Remote Desktop Protocol (RDP) and Secure Shell Protocol (SSH) access to virtual machines (VMs) without any exposure through public IP addresses.

Direct connection

Connect with a single click for RDP and SSH sessions in the Azure Portal.

Agentless support

Provide support in your VM or browser without the need for an agent.

Firewall integration

Integrate existing firewalls and security perimeters using a modern HTML5-based web client and standard TLS ports.

Scalable

Scale with Bastion Standard to manage additional concurrent SSH and RDP connections.

VM Session Recording

Record VM sessions with Bastion Premium to manage events that occurred during the session.
Security

Built-in security and compliance 

Microsoft has committed to investing $20 billion in cybersecurity over five years.
We employ more than 8,500 security and threat intelligence experts across 77 countries.
Azure has one of the largest compliance certification portfolios in the industry.
Learn more about security on Azure
A woman wearing glasses and white earbuds using a laptop.
Pricing

Learn more about Azure Bastion pricing

Charged on a per-hour basis (plus charges for outbound data transfers), Azure Bastion is more cost-effective than manually deploying your own jump box.
See pricing details
CUSTOMER STORIES

Trusted by companies of all sizes

A close-up of a stack of steel rods.
METINVEST logo with a red star and black text on a white background.

Metinvest lays foundations for long-term growth

Global manufacturer Metinvest needed a more scalable infrastructure, so it migrated to Azure. The company now benefits from top-notch security, including Azure Bastion as an essential solution to ensure more secure access to services in VMs.
Back to CUSTOMER STORIES section
RESOURCES

Azure Bastion resources and documentation

Explore the resources to get started with Azure Bastion.
A man and woman looking at a laptop.

Get started with Azure Bastion

Read the Azure Bastion overview.
Read more
A group of people sitting at a table with a woman looking at a laptop and a man wearing headphones..

Introduction to Azure Bastion

Start with the Introduction to Azure Bastion learning module.
Learn more
A man sitting in front of a computer.

Connect to virtual machines

Learn to connect to virtual machines through the Azure portal using Azure Bastion.
Learn more
Back to carousel navigation controls

Frequently asked questions

  • No, you don’t need a client to access the RDP/SSH connection to your Azure Virtual Machine. Use the Azure portal for RDP/SSH access to your virtual machine directly in the browser.
  • No, you don't need to install an agent on your browser or your Azure Virtual Machine. Azure Bastion is agentless and does not require any additional software for RDP/SSH.
  • Use the Microsoft Edge browser for Windows, Google Chrome for Windows and Mac, or Microsoft Edge Chromium for Windows and Mac.
  • Bastion offers 4 SKUs—Developer, Basic, Standard, and Premium—to meet the functionality and cost needs from single users to large enterprises. Learn more about which Bastion SKU is right for you at SKUs.
  • Bastion Developer is a new low-cost, zero-configuration, multi-tenant SKU of the Azure Bastion service. Unlike our existing Basic and Standard SKUs, which inject dedicated resources into a customer's virtual network, Bastion Developer depends on a shared resource model to provide private RDP/SSH connectivity to your virtual machines over the Azure portal. The Bastion Developer SKU is ideal for Dev/Test users who want to securely connect to their VMs without the need for additional features or scaling.
  • Bastion Premium targets customers with highly regulated policies and session management needs. With graphical session recording, customers are able to record their VM sessions and to watch their recordings within the Bastion blade. Private Only Bastion will allow customers to connect to their Bastions via a private IP address, rather than a public IP. On top of these features, Bastion Premium has a roadmap of features that will cater to customers’ session management and policy needs.
A close-up of a yellow and white sky.
A man and woman looking at a laptop.
Next steps

Choose the Azure account that’s right for you

Pay as you go or try Azure free for up to 30 days.
Get started with Azure
A woman wearing glasses smiling.
Azure solutions

Azure cloud solutions

Solve your business problems with proven combinations of Azure cloud services, as well as sample architectures and documentation.
Explore Azure Solutions
A man wearing glasses and looking at a laptop.
Business Solutions Hub

Find the right Microsoft Cloud solution

Browse the Microsoft Business Solutions Hub to find the products and solutions that can help your organization reach its goals.
Explore Microsoft solutions
AI-powered assistant