You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/bastion/connect-native-client-windows.md
+8-6Lines changed: 8 additions & 6 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -13,18 +13,16 @@ ms.custom: ignite-fall-2021
13
13
14
14
# Connect to a VM using Bastion and the native client on your Windows computer (Preview)
15
15
16
-
Azure Bastion now offers support for connecting to target VMs in Azure using a native client on your Windows workstation. This feature lets you connect to your target VMs via Bastion using Azure CLI and expands your sign-in options to include local SSH key pair and Azure Active Directory (Azure AD). This article helps you configure Bastion with the required settings, and then connect to a VM in the VNet. For more information, see the [What is Azure Bastion?](bastion-overview.md).
16
+
Azure Bastion now offers support for connecting to target VMs in Azure using a native RDP or SSH client on your Windows workstation. This feature lets you connect to your target VMs via Bastion using Azure CLI and expands your sign-in options to include local SSH key pair and Azure Active Directory (Azure AD). This article helps you configure Bastion with the required settings, and then connect to a VM in the VNet. For more information, see the [What is Azure Bastion?](bastion-overview.md).
17
17
18
18
> [!NOTE]
19
19
> This configuration requires the Standard SKU for Azure Bastion.
20
20
>
21
21
22
-
> [!IMPORTANT]
23
-
> This feature is still rolling out globally. If you cannot access it in the Azure portal, please wait for a few days and try again.
24
-
25
-
26
22
Currently, this feature has the following limitations:
27
23
24
+
* Native client support is not yet available for use from your local Linux workstation. If you are connecting to your target VM from a Linux workstation, please use the Azure portal experience.
25
+
28
26
* Signing in to your target VM using a custom port or protocol is not yet available with native client support. If you want to use a custom port or protocol to sign in to your target VM via Bastion, use the Azure portal experience.
29
27
30
28
* Signing in using a local username and password to your target VM is not yet supported. If you want to use local username and password credentials to sign into your target VM via Bastion use the Azure portal experience.
@@ -38,6 +36,10 @@ Before you begin, verify that you have met the following criteria:
38
36
* The latest version of the CLI commands (version 2.30 or later) is installed. For information about installing the CLI commands, see [Install the Azure CLI](/cli/azure/install-azure-cli) and [Get Started with Azure CLI](/cli/azure/get-started-with-azure-cli).
39
37
* An Azure virtual network.
40
38
* A virtual machine in the virtual network.
39
+
* If you plan to sign into your virtual machine using your Azure AD credentials, make sure your virtual machine is set up using one of the following methods:
40
+
* Enable Azure AD login for a [Windows VM](../active-directory/devices/howto-vm-sign-in-azure-ad-windows.md) or [Linux VM](../active-directory/devices/howto-vm-sign-in-azure-ad-linux.md).
41
+
*[Configure your Windows VM to be Azure AD-joined](../active-directory/devices/concept-azure-ad-join.md).
42
+
*[Configure your Windows VM to be hybrid Azure AD-joined](../active-directory/devices/concept-azure-ad-join-hybrid.md).
41
43
42
44
## Configure Bastion
43
45
@@ -72,7 +74,7 @@ Verify that the following roles and ports are configured in order to connect.
72
74
* Reader role on the virtual machine.
73
75
* Reader role on the NIC with private IP of the virtual machine.
74
76
* Reader role on the Azure Bastion resource.
75
-
* Virtual Machine Administrator Login or Virtual Machine User Login role, if you are using the Azure AD login method.
77
+
* Virtual Machine Administrator Login or Virtual Machine User Login role, if you are using the Azure AD login method. Note that you only need to do this if you're enabling Azure AD login using the process described here: [Azure Windows VMs and Azure AD](../active-directory/devices/howto-vm-sign-in-azure-ad-windows.md) or [Azure Linux VMs and Azure AD](../active-directory/devices/howto-vm-sign-in-azure-ad-linux.md)
0 commit comments