Best Practices for Remote Desktop Access of Windows 10 Virtual Machine

Question

Dear Experts,I want to use a Win10 VM on Azure as virtual desktop. For RDP, I will have to open port 3389. I want to know what are best practices for securely using RDP? I saw on Azure that VPN is an option. If I connect from a regular laptop/desktop to VM via Azure VPN, will it be free or there will be charges?&nbsp;Finally, if I make an inbound rule and open all connections on 3389 for a brief time to RDP to VM and then immediately block all inbound connection to Azure, will it be a very secure practice?&nbsp;Looking for your insight. Much appreciate your help.Thanks

lukemurraynz · Answer

Take a look at Azure Bastion - https://azure.microsoft.com/en-au/services/azure-bastion/

If you don't mind paying for Defender in Azure you can configure Just in Time RDP access to the server as well: https://docs.microsoft.com/en-us/azure/security-center/security-center-just-in-time?tabs=jit-config-asc%2Cjit-request-asc

and of course: you can also look at: https://azure.microsoft.com/en-us/services/virtual-desktop/

gil blumberg · Answer

You can also use JIThttps://docs.microsoft.com/en-us/azure/security-center/security-center-just-in-time?tabs=jit-config-asc%2Cjit-request-asc

Forum Discussion

Best Practices for Remote Desktop Access of Windows 10 Virtual Machine

Share

Resources