Forum Discussion
Windows Admin Center - how to publish WAC console through AppProxy/MFA and use all functionalities
I have an on prem server win WAC console installed.
I’d like to use WAC via Azure AppProxy, so I can connect to WAC from external network via AppProxy/MFA and remotely manage my environment/systems remotely via Powershell, and Remote desktop as well.
Unfortunately, it seems doesn't work because "Remote Desktop, PowerShell, and Events modules in Windows Admin Center utilize the WebSocket protocol, which is often not supported when using a proxy service."
https://docs.microsoft.com/en-us/windows-server/manage/windows-admin-center/support/known-issues#websocket-compatibility-when-using-a-proxy-service
So, If I would like to remotely connect to WAC console in a safe manner (with Azure MFA) and use all functionalities (RDP and powershell remotely) which is the best practices?
I have a case opened for this, but I'm still waiting an answer from Product team.
thank you
2 Replies
- Chris81,
Did you ever get a response from the Product Team?
BenKrah response doesn't really provide the security and controls that Auzre AppProxy does, and to me this seems like a great use case - independent of if you are authenticating to WAC with local, Windows Active Directory, or Azure AD (Cloud-only or Hybrid). Hi Chris81,
please have a look here - you will need a Windows Admin Center gateway server which you must publish to the internet (classic port forwarding): https://docs.microsoft.com/de-de/windows-server/manage/windows-admin-center/plan/installation-options
You can integrate the gateway with Azure authentication as shown here:
https://docs.microsoft.com/de-de/windows-server/manage/windows-admin-center/azure/azure-integration
