Microsoft has released a public preview of a new “Premium” version of Azure Bastion, an Azure virtual machine security product. Azure Bastion allows organizations to securely access Azure virtual machines using an Internet connection. The new Premium edition offers enhanced security features for organizations that have strict security and compliance requirements or handle highly sensitive workloads on Azure virtual machines.
One key feature of Azure Bastion Premium is the “Private Only” capability, which allows users to access Azure virtual machines through a private endpoint instead of a public IP address. This feature is particularly useful for organizations looking to minimize the use of public endpoints and adhere to strict policies around their use. By combining the private-only capability with Azure ExpressRoute private peering, users can access their virtual machines in a virtually isolated manner from an on-premises network.
In addition to enhanced security, Azure Bastion Premium offers advanced monitoring and recording capabilities. Specifically, the Premium version includes a graphical session recording feature that allows organizations to record all activity within a virtual machine session initiated through an Azure Bastion connection. Organizations can choose where to store these recordings and how long to retain them. These recordings can be valuable in detecting unusual user behavior that may indicate a security incident.
Microsoft plans to unveil more features of Azure Bastion Premium in the near future. The Premium version joins existing Azure Bastion SKUs such as Developer, Basic, and Standard, each offering different capabilities and levels of security. Organizations can access more information on each SKU’s features on Microsoft’s website. Stay tuned for further updates on Azure Bastion Premium as Microsoft continues to enhance its security offerings.
Article Source
https://rcpmag.com/Articles/2024/06/05/Azure-Bastion-Premium-Preview.aspx