question

LanceJ-0552 avatar image
0 Votes"
LanceJ-0552 asked TilSACHighStoned-2577 answered

Bastion Connection Erros on Azure VM

Hello,

I continuously have connection issues (intermittent) with one of my VM's in the Azure portal. Running connection diagnostics shows no issue. The health page on the bastion host also shows no issue. However, when connecting via bastion, I receive:

"You do not have permission to access this connection. If you require access, please add your account to the list of allowed users, or check your system settings."

I can confirm that the username and password are correct - currently, no user can connect at all. I have also tried rebooting the VM

Or it claims the bastion host is down. The NIC and VNET both allow 3389 on the proper IP range.

Any ideas?

azure-bastion
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@LanceJ-0552

Can you please confirm that you have NSG rules setup on the Target VM as per instructions given in the following docs:

https://docs.microsoft.com/en-us/azure/bastion/bastion-nsg#target-vm-subnet &

https://docs.microsoft.com/en-us/azure/bastion/bastion-nsg#apply

0 Votes 0 ·

@LanceJ-0552 Any update?

0 Votes 0 ·
ManuPhilip avatar image
0 Votes"
ManuPhilip answered

Following link is helpful in troubleshooting the issue.
bastion-faq

Also, the entire page suggests on Azure Bastion FAQ

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

$$ANON_USER$$ avatar image
0 Votes"
$$ANON_USER$$ answered

Hello everyone,

I am also facing similar issue.
Although having reader access on resource group could not able to access VM over bastion. getting error as

"You don't have permission to access this connection. If you require access, please add your account to the list of allowed users or check your system settings"

Not sure how to validate list of allowed users.

Thanks much appricated

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Marty-5899 avatar image
2 Votes"
Marty-5899 answered rierjarv commented

I had a similiar issue. I found that I had select that the user had to change password upon first login. I was presented with the same error message. The bastion interface did not like that, so unchecking that box allowed for access.

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Worked for me as well. Thanks for that! Such a user-friendly message (ironic).

The VM account password was expired...

0 Votes 0 ·
rierjarv avatar image rierjarv AndreAndradeLR ·

Had a similar issue, changing the user's password solved it (although I had once changed the password already from the default password)

0 Votes 0 ·
TilSACHighStoned-2577 avatar image
0 Votes"
TilSACHighStoned-2577 answered

Had a similar issue, found the actual issue by temp allowing RDP from home, then the actual error showed: (password expired, which was strange since I was allowed to login to the Azure portal using that account. )
Changed the password via https://myaccount.microsoft.com/ and I regained access to the VM....

217336-azure-rdp-password-expired.jpg



5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.