I would like to connect two VM from two different account in Windows Azure.
Is it possible?
Because I've searched in the web and the e.g are only about the same account.
Thank you all for the help
This is not possible. Azure Connect is per subscription scope. See if the new endpoint to site VPN works for you https://azure.microsoft.com/documentation/articles/vpn-gateway-point-to-site-create/, I haven't tried it.
Related
I have been playing around with azure vpn to have a better understanding of how it works.
I have implemented an azure vpn point to site. Everything works just fine.
But according to my understanding of azure documentation, the azure point to site can be used mainly to access private resource through their private ip or endpoint.
So I was wondering if someone can help me to understand the following point:
rather than accessing azure portal though the open internet, I would like to make the login to azure active directory, exclusively through azure vpn. So if I try to login to the azure portal through my normal wifi, I would like to be blocked, and be guaranteed access only if I am connected to azure vpn.
Is there any solution to this matter?
Thank you very much for your help and any explanation provided.
You can use a conditional access policy in Azure AD for this. You must define an IP Range and assign it to the policy, restricting access only from this IP
The app that you would restrict access to would be Microsoft Azure Management
This is more one for curiosity and learning.
I currently have an Azure VM (Windows 2016 and SQL 2017) which I just use for R&D. The RDP port is enabled - no big deal as there is nothing top secret.
But just to learn more about Azure I wanted to create a VPN so I can connect via that. Googling, has left me a tad confused as how to go about this gateways, gateway subnet etc etc. I'm not sure if the articles I am reading are the right ones as whatever I try doesn't appear to work.
Does anyone know of any links that might help me start from scratch with VPN settings to connect?
You can try to set up a VPN type of P2S, you can make a Self-signed root certificate for free. And the steps are also simple. And you can follow the document Configure a Point-to-Site connection to a VNet using native Azure certificate authentication: Azure portal. I'm glad if this can help you.
I found these series of Microsoft training guides to be super helpful. (you can find them via the azure portal on the overview page of a virtual network resource)
https://learn.microsoft.com/en-us/learn/modules/introduction-to-azure-virtual-networks/
https://learn.microsoft.com/en-us/azure/architecture/reference-architectures/hybrid-networking/hub-spoke?tabs=portal
https://learn.microsoft.com/en-us/learn/modules/design-implement-network-monitoring/
https://learn.microsoft.com/en-us/learn/modules/design-implement-network-security-monitoring/
https://learn.microsoft.com/en-us/learn/modules/integrate-vnets-with-vnet-peering/
https://learn.microsoft.com/en-us/learn/modules/design-a-hybrid-network-architecture/
So, I'm trying to setup TFS 2017 on Azure with separate App tier VM and DB tier VM. I'm trying to connect them but apparently you can only do multi-tier when in an AD. Am I able to use solely Azure Active Directory for this? If so, how do I set it up? I've not see any instructions on how to properly do this.
Thanks!
Your issue is similar to this case on ServerFault. Usually, you need follow the steps below:
create virtual network
put your vms into that virtual network so they will be in the same network and domain works
join the domain
install TFS AT server and DT server.
Note: If you get error An Active Directory Domain Controller (AD DC) for the domain “x.x.com” could not be contacted when join a Windows 2012 R2 server to a domain in Windows Azure, check the solution here: http://www.itexperience.net/2014/06/06/an-active-directory-domain-controller-ad-dc-for-the-domain-x-x-com-could-not-be-contacted-windows-azure/
Useful guide can be downloaded from: http://vsarplanningguide.codeplex.com/downloads/get/842516
I have an Azure Website and it is required to consume an elastic search service that's running on a VM.
Although I need to be able to lock the access to elastic search down so only the Azure Website can access it, I can't seem to work out how to do this using the endpoint configuration on the VM.
Am I looking in the wrong place?
Thanks
Carl
You will need to setup a Hybrid Connection between your Web Site and the VM:
Hybrid Connections create a safe tunnel between your Web Site and a VM for example. The screenshot shows the integration between a Web Site and the corporate network, but this also works for VMs running in Azure.
The only requirement is that you install the Hybrid Connection Manager on your VM. More information:
http://azure.microsoft.com/en-us/documentation/articles/integration-hybrid-connection-overview/
Recentely, I deploy a worker role that it will connect to internet and attemp to access some websites (For example: http://somewebsite.redmond.corp.microsoft.com/en-us/library/).
It successfully access the websites on my development machine running on emulator. But on the Azure virual machine that I deploy my worker role to, it is not able to access the websites. I try to open the websites on VM browering in IE, it is also not able to.
Have u emcounter similar issues? How do u deal with it?
This has nothing to do with accessing the Internet. The URL you provided isn't publicly visible (at least I can't access it from my machine). This means you're attempting to visit a URL behind a firewall, possibly requiring a VPN to access.
Windows Azure VM's, whether worker roles, web roles, or Virtual Machines, are in a public cloud and not behind any firewall. If you wanted to access it from a Windows Azure VM, you'd need to set up a Virtual Network, introduced in the Spring 2012 update. More information here.
Try using Elevated premissions for this. Once,I tried to access internet through RDP of a Role, It was working at that time hence it should be possible for you to access internet. But if are trying to download exes and execute, I Think that isn't possible.Please post you Results here.
Regards,
Vijay.