Microsoft has lifted the lid on its managed platform as a service (PaaS) product that seeks to protect exposed virtual machines (VMs) from outside threats.
The firm says it's worked with hundreds of cloud customers across a wide area of industries to launch a preview of the service, which sits between the Azure portal to virtual interfaces.
It is said to guarantee a degree of safety when accessing off-internet VMs by providing seamless remote desktop protocol (RDP) and secure shell (SSH) connectivity via the secure sockets layer (SSL).
"For many customers around the world, securely connecting from the outside to workloads and virtual machines on private networks can be challenging," Microsoft's corporate vice president for Azure networking Yousef Khalidi said.
"Exposing virtual machines to the public Internet to enable connectivity through Remote Desktop Protocol (RDP) and Secure Shell (SSH), increases the perimeter, rendering your critical networks and attached virtual machines more open and harder to manage."
Azure Bastion will feed directly into a customer's Azure Virtual Network without the need to worry about managing network security policies, Khalidi added. The feedback Microsoft received from customers centred on the need for an easy and integrated way to deploy, run, and scale jump-servers or bastion hosts within Azure infrastructure.
Among the features are increased protection against port scanning due to limiting the exposure of VMs to the public internet. Azure Bastion is also reinforced by automatic patching, handled by Microsoft, to best guard customers against zero-day exploits.
Bastion hosts are generally known to be special purpose computers on networks that are specifically built to withstand cyber attacks. The computer normally hosts just one app, and all other services are removed or limited to reduce the threat surface.
Microsoft will be building out Azure Bastion over the coming months and adding more features as its developers progress the platform towards its general release.
-
Using DeepSeek at work is like ‘printing out and handing over your confidential information’News Thinking of using DeepSeek at work? Think again. Cybersecurity experts have warned you're putting your enterprise at huge risk.
-
Can cyber group takedowns last?ITPro Podcast Threat groups can recover from website takeovers or rebrand for new activity – but each successful sting provides researchers with valuable data
-
Is AWS' cloud dominance waning? New stats show the hyperscaler's IaaS market share is decreasing while Microsoft and Google record gainsNews AWS maintained its lead in the IaaS market last year, but its share decreased while Microsoft and Google recorded gains.
-
‘Misses the mark’: Microsoft, AWS hit out at CMA cloud competition reportNews The CMA claims Microsoft and AWS are harming competition – the duo strongly disagree
-
US companies dominate the European cloud market – regional players are left fighting for scrapsNews Synergy data shows EU providers hold just 15% of the market despite rise in AI and drive for cloud sovereignty
-
What the new Microsoft Sovereign Cloud push means for European customersNews The tech giant is bolstering protections for regional users using public and private cloud services
-
Where is the cloud headed?ITPro Podcast UK businesses are balancing cloud migration with AI adoption and demands for data sovereignty
-
Microsoft says it’ll protect EU cloud customers from shutdown demandsNews Microsoft president Brad Smith says the company will protect its EU cloud services from outside pressure
-
The Wiz acquisition stakes Google's claim as the go-to hyperscaler for cloud security – now it’s up to AWS and industry vendors to reactAnalysis The Wiz acquisition could have monumental implications for the cloud security sector, with Google raising the stakes for competitors and industry vendors.
-
Microsoft’s EU data boundary project crosses the finish lineNews Microsoft has finalized its EU data boundary project aimed at allowing customers to store and process data in the region.
