az network bastion
Manage Azure bastion host.
Commands
az network bastion create |
Create a Azure bastion host machine. |
az network bastion delete |
Delete a Azure bastion host machine. |
az network bastion list |
List all Azure bastion host machines. |
az network bastion rdp |
RDP to target Virtual Machine using Tunneling from Azure Bastion. |
az network bastion show |
Show a Azure bastion host machine. |
az network bastion ssh |
SSH to a virtual machine using Tunneling from Azure Bastion. |
az network bastion tunnel |
Open a tunnel through Azure bastion to a target virtual machine. |
az network bastion create
Create a Azure bastion host machine.
az network bastion create --name
--public-ip-address
--resource-group
--vnet-name
[--location]
[--scale-units]
[--sku {Basic, Standard}]
[--tags]
Examples
Create a Azure bastion host machine. (autogenerated)
az network bastion create --location westus2 --name MyBastionHost --public-ip-address MyPublicIpAddress --resource-group MyResourceGroup --vnet-name MyVnet
Required Parameters
Name of the bastion host.
Name or ID of the Azure public IP. The SKU of the public IP must be Standard.
Name of resource group. You can configure the default group using az configure --defaults group=<name>
.
Name of the virtual network. It must have a subnet called AzureBastionSubnet.
Optional Parameters
Location. Values from: az account list-locations
. You can configure the default location using az configure --defaults location=<location>
.
The scale units for the Bastion Host resource, which minimum is 2 and maximum is 50.
The SKU of this Bastion Host.
Space-separated tags: key[=value] [key[=value] ...]. Use "" to clear existing tags.
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Increase logging verbosity. Use --debug for full debug logs.
az network bastion delete
Delete a Azure bastion host machine.
az network bastion delete [--ids]
[--name]
[--resource-group]
Examples
Delete a Azure bastion host machine. (autogenerated)
az network bastion delete --name MyBastionHost --resource-group MyResourceGroup
Optional Parameters
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Name of the bastion host.
Name of resource group. You can configure the default group using az configure --defaults group=<name>
.
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Increase logging verbosity. Use --debug for full debug logs.
az network bastion list
List all Azure bastion host machines.
az network bastion list [--resource-group]
Optional Parameters
Name of resource group. You can configure the default group using az configure --defaults group=<name>
.
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Increase logging verbosity. Use --debug for full debug logs.
az network bastion rdp
RDP to target Virtual Machine using Tunneling from Azure Bastion.
az network bastion rdp --target-resource-id
[--ids]
[--name]
[--resource-group]
[--resource-port]
Examples
RDP to virtual machine using Azure Bastion.
az network bastion rdp --name MyBastionHost --resource-group MyResourceGroup --target-resource-id vmResourceId
Required Parameters
ResourceId of the target Virtual Machine.
Optional Parameters
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Name of the bastion host.
Name of resource group. You can configure the default group using az configure --defaults group=<name>
.
Resource port of the target VM to which the bastion will connect.
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Increase logging verbosity. Use --debug for full debug logs.
az network bastion show
Show a Azure bastion host machine.
az network bastion show [--ids]
[--name]
[--resource-group]
Examples
Show a Azure bastion host machine.
az network bastion show --name MyBastionHost --resource-group MyResourceGroup
Optional Parameters
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Name of the bastion host.
Name of resource group. You can configure the default group using az configure --defaults group=<name>
.
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Increase logging verbosity. Use --debug for full debug logs.
az network bastion ssh
SSH to a virtual machine using Tunneling from Azure Bastion.
az network bastion ssh --auth-type
--target-resource-id
[--ids]
[--name]
[--resource-group]
[--resource-port]
[--ssh-key]
[--username]
Examples
SSH to virtual machine using Azure Bastion using password.
az network bastion ssh --name MyBastionHost --resource-group MyResourceGroup --target-resource-id vmResourceId --auth-type password --username xyz
SSH to virtual machine using Azure Bastion using ssh key file.
az network bastion ssh --name MyBastionHost --resource-group MyResourceGroup --target-resource-id vmResourceId --auth-type ssh-key --username xyz --ssh-key C:/filepath/sshkey.pem
SSH to virtual machine using Azure Bastion using AAD.
az network bastion ssh --name MyBastionHost --resource-group MyResourceGroup --target-resource-id vmResourceId --auth-type AAD
Required Parameters
Auth type to use for SSH connections.
ResourceId of the target Virtual Machine.
Optional Parameters
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Name of the bastion host.
Name of resource group. You can configure the default group using az configure --defaults group=<name>
.
Resource port of the target VM to which the bastion will connect.
SSH key file location for SSH connections.
User name for SSH connections.
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Increase logging verbosity. Use --debug for full debug logs.
az network bastion tunnel
Open a tunnel through Azure bastion to a target virtual machine.
az network bastion tunnel --port
--resource-port
--target-resource-id
[--ids]
[--name]
[--resource-group]
[--timeout]
Examples
Open a tunnel through Azure bastion to a target virtual machine.
az network bastion tunnel --name MyBastionHost --resource-group MyResourceGroup --target-resource-id vmResourceId --resource-port 22 --port 50022
Required Parameters
Local port to use for the tunneling.
Resource port of the target VM to which the bastion will connect.
ResourceId of the target Virtual Machine.
Optional Parameters
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
Name of the bastion host.
Name of resource group. You can configure the default group using az configure --defaults group=<name>
.
Timeout for connection to bastion host tunnel.
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID
.
Increase logging verbosity. Use --debug for full debug logs.
Feedback
Submit and view feedback for