question

hitendersingh-1558 avatar image
0 Votes"
hitendersingh-1558 asked SaiKishor-MSFT edited

Cloud/Intune managed devices - VPN or any other service to have users access resources from a single point?

92425-vpn.jpg




No on premise server/vpn
Basic office router
Two sites - India and Japan
Users are working from home
Devices are managed via Intune
Some of our clients give access to our employees into their environment but they can only whitelist access from single IP for us, since users are working from home and there is no single access point what solution can be recommended?
is there any Azure service that can help in this situation?

Thank you

azure-vpn-gateway
vpn.jpg (76.5 KiB)
· 5
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@hitendersingh-1558 Thanks for posting in our Q&A. This issue is more related to Azure. Maybe configure VPN gateway will meet the requirement.
https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpngateways

Given this situation, I will remove intune tag and add Azure tag. Thanks.

1 Vote 1 ·

@hitendersingh-1558 Thank you for reaching out to Microsoft Q&A.

I am not sure if I understand your requirement correctly. Do you want your employees that are working from home to access your client location or Azure Network? If you want them to access the Azure Cloud Services/VMs in Azure, then you can make use of the Azure P2S VPN for the remote users. Please let me know if you have different or additional requirement and I can assist further. Thank you!


1 Vote 1 ·

Thank you @saikishor-MSFT for your response.

Allow me to explain it further. Currently we have offices in two different countries and each user is working from Home. We have no on-premise infrastructure and devices are managed via Intune. We are using standard SMB routers at our office and procured a public IP from ISP. Now for an example, Our client has allowed/whitelisted our Office public IP in their network but users working from home cannot access client's resources since their own IP isn't allowed. Now what I am trying to achieve is, each machine should first connect to some sort of VPN service in azure and then if that machine access client's resource, client should only see the public IP of that service/loadbalancer or whatever that service could be. I hope that make sense :)
Azure P2S VPN would work for that? I appreciate your help :)

0 Votes 0 ·

Machine (connected via own home internet) --> Azure VPN service or some sort --> Client see a static public IP address for each user

0 Votes 0 ·
Show more comments

0 Answers