cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Azure Keyvault and bastion integration

DarrenRD
Occasional Contributor

‎Aug 20 2022 09:53 AM

‎Aug 20 2022 09:53 AM

Azure Keyvault and bastion integration

Hello,

I  connect to  my jump server via bastion, and uses KV to retrieve local administrator password of the jumpseever , then from my jumpserver  launch RDP session onto my servers . However after setting up private endpoint , bastion is not able to retrieve the jumpserver password .

i confirmed my servers can access KV over the private link and resolves to internal KV private link address .

Does Azure bastion support  private link? or perhaps managed identity issue and  creating one  bastion to allow allow access to KV would resolve the issue? if so not sure how to create 

Error message from bastion >>>"unable to list key"  and perhaps identity permissions to KV  is the issue?  

 

Any ideas?

thanks

1,686 Views
0 Likes
2 Replies
Reply
2 Replies
ibrahimambodji

‎Aug 20 2022 12:30 PM - edited ‎Nov 18 2022 07:13 AM

‎Aug 20 2022 12:30 PM - edited ‎Nov 18 2022 07:13 AM

Re: Azure Keyvault and bastion integration

Hello there is no private link resource for Azure Bastion
You can check the full list here : https://docs.microsoft.com/en-us/azure/private-link/private-endpoint-overview.

 

However, as Igor suggest you can try to link (virtual network link) the key vault private DNS zone to your bastion virtual network.

0 Likes
Reply
IgorOrmus

‎Nov 18 2022 03:03 AM

‎Nov 18 2022 03:03 AM

Re: Azure Keyvault and bastion integration

@DarrenRD have you linked the bastion vnet with the KV private dns zone, this was the issue in my case and linking it resolved the problem 

0 Likes
Reply