maximum user sessions on management server using Bastion

WinTechie 286 Reputation points
2021-07-09T08:16:31.567+00:00

Hi,

I am planning to create a azure VM in azure where all IT admins will login (like a jumpbox/management server)
since they all will be connecting using Bastion service to this VM and all other VMs, how do I ensure they all can connect to this server at the same time using Bastion service, i know windows by default allows max. 2 RDP sessions, but considering this being a jumpbox all admins will be logging in to this first using Bastion.

In usual scenarios (on-prem infrastructure), where Bastion is not used, remote desktop session host is installed on jumpbox and licenses are acquired from RDS license server (per user CAL), can this solution be adapted in Bastion scenario as well?

Azure Bastion
Azure Bastion
An Azure service that provides private and fully managed Remote Desktop Protocol (RDP) and Secure Shell (SSH) access to virtual machines.
262 questions
Remote Desktop
Remote Desktop
A Microsoft app that connects remotely to computers and to virtual apps and desktops.
4,551 questions
Accepted answer
  1. Jenny Yan-MSFT 9,336 Reputation points
    2021-07-13T05:54:32.507+00:00

    Hi,

    Thanks for the update.

    After some research, it seemed that for Azure Bastion itself, the concurrent session number is described as below
    114049-1.png

    However, this limit might vary due to the system of target machine you are connecting to. Both two answers below are directing to the conclusion that Azure Bastion is still limited by what is possible from within the operating system.
    https://github.com/MicrosoftDocs/azure-docs/issues/50013
    https://github.com/MicrosoftDocs/azure-docs/issues/49863

    Please note: Information posted in the given link is hosted by a third party. Microsoft does not guarantee the accuracy and effectiveness of information.

    ----------

    Hope this helps and please help to accept as Answer if the response is useful.

    Thanks,
    Jenny

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Jenny Yan-MSFT 9,336 Reputation points
    2021-07-12T01:53:00.157+00:00

    Hi,

    As SaiKishor confirmed that acccessing to Windows Server VMs by Azure Bastion does not require an RDS CAL when used solely for administrative purposes and by default Azure servers only support 2 concurrent RDP sessions.

    But if you need more than two connections then this is no longer remote administration, then RDS CAL is requested for each user session like on premise RDS deployment.

    Reference links:
    Does Azure Bastion require an RDS CAL for administrative purposes on Azure-hosted VMs?
    https://video2.skills-academy.com/en-us/azure/bastion/bastion-faq
    Concurrent Azure Bastion Sessions
    https://stackoverflow.com/questions/65185391/concurrent-azure-bastion-sessions

    Please note: Information posted in the given link is hosted by a third party. Microsoft does not guarantee the accuracy and effectiveness of information.

    If more information is needed, kindly share us with more details on your queries.

    ----------

    Hope this helps and please help to accept as Answer if the response is useful.

    Thanks,
    Jenny

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.