Member-only story
How to Deploy the Azure Bastion Host Service using Terraform
4 min readDec 26, 2022
Azure Bastion Host is a service that lets us connect to a virtual machine using our browser and the Azure portal or via the native SSH or RDP client already installed on our local computer.
The Azure Bastion service is a fully platform-managed PaaS service that we provision inside our virtual network. It provides secure and seamless RDP/SSH connectivity to our virtual machines directly from the Azure portal over TLS.
When we connect via Azure Bastion to our virtual machines, they don’t need a public IP address, agent, or special client software.
The architecture of the Azure Bastion Service is like this:
1. Requirements
To deploy the Azure Bastion Service in Azure, we will need the following:
- Define the Azure Provider
- Create or use an existing Resource Group
- Create or use an existing VNET
- Create a dedicated Subnet for the Bastion Service
- Create the Azure Bastion Service
