Microsoft Azure Administrator Associate AZ-104 Practice Question
You manage several virtual machines in an Azure virtual network that are not accessible from the internet. You need to securely connect to these virtual machines directly from the Azure portal without exposing them to the internet. What should you deploy to meet this requirement?
Set up a jumpbox virtual machine accessible from the internet.
Implement a VPN Gateway for remote connectivity.
Configure an Application Gateway to provide access.
Deploying Azure Bastion to the virtual network allows secure, browser-based RDP or SSH access to your virtual machines through the Azure portal without assigning public IP addresses to the VMs. Azure Bastion establishes the session over TLS, keeping all traffic inside the virtual network.
An Azure Application Gateway is a layer-7 load balancer for web traffic and cannot be used for remote desktop or SSH connectivity. Creating a jump-server VM that is reachable from the public internet would expose a VM to the very risk you are trying to eliminate. Implementing a VPN gateway provides secure tunneling but still requires a VPN client on the administrator's device and does not give direct portal-based access.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Azure Bastion and how does it work?
Open an interactive chat with Bash
What are the security benefits of using Azure Bastion?
Open an interactive chat with Bash
How does Azure Bastion differ from setting up a jumpbox?
Open an interactive chat with Bash
Microsoft Azure Administrator Associate AZ-104
Configure and manage virtual networking
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access