LAB VM Hardening loosing connectivity

Question

Hi, I need some help here,&nbsp;I am working on a project on an AzureLab to automate the installation of a Privileged Access Management solution (CyberArk). The problem I am encountering is that the Vault VM (containing passwords) needs a drastic hardening.&nbsp;Everything works until I restart the VM after the hardening process from AzureLAB (I am able to restart it from windows without a problem). The starting button never ends and after 10 minutes the VM is disconected. However, until those 10 minutes I am still able to use it as if it worked completly fine.&nbsp;My only clue here is I suppose that AzureLAB uses behind the scenes a specific utility to check if the VM is actually started, wich is blocked by my hardening ?&nbsp;Does anyone already encountered a similar problem ?Any help would be appreciated, thanks.

rahul_srivastava · Answer

It looks like the outbound access for the lab agent is being blocked. Please add the following endpoints for outbound traffic:
&nbsp;
-The IP for an Azure endpoint required for Azure vm communication
&nbsp; &nbsp; 168.63.129.16
&nbsp;
-The host name used for storage account.
&nbsp; &nbsp; 'labservicesprod.blob.core.windows.net'
&nbsp;
-The host name used for heartbeats.
&nbsp;
&nbsp; &nbsp; 'labs-westus.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-westeurope.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-westcentralus.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-ukwest.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-uksouth.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-uaenorth.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-switzerlandnorth.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-southeastasia.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-southcentralus.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-southafricanorth.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-norwayeast.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-northeurope.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-northcentralus.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-koreacentral.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-japaneast.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-germanywestcentral.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-francecentral.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-eastus2euap.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-eastus2.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-eastus.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-eastasia.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-centralus.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-centralindia.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-canadaeast.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-canadacentral.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-brazilsouth.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-australiasoutheast.prod.labservices.azure.com',
&nbsp; &nbsp; 'labs-australiaeast.prod.labservices.azure.com',Please let us know if this fixes the issue. Thank you.

Forum Discussion

LAB VM Hardening loosing connectivity

Share