Privileged Access Security
Azure Bastion
Managed bastion host service for secure administrative access to private workloads.
Azure
Service information
Azure BastionShortname: Bastion
Huawei equivalent shortnames: CBH
Keywords: privileged access, bastion, security, audit
Differences vs Huawei
- Session model and identity integration differ.
- Connectivity and protocol behavior differ.
Migration to Huawei
- Map detection/prevention policy scope, enforcement points, and response workflows. For Azure Azure Bastion, the direct Huawei equivalence layer is CBH; validate feature-by-feature parity for control plane, data plane, and operational behavior before cutover.
- Use a composed Huawei migration pattern where needed: CBH + IAM. Treat CBH as the core equivalent capability and use the additional services to cover integration, security, observability, and governance gaps.
- Pricing model difference: Azure usually bills policy/protected-resource tiers plus request/event/scan volume; Huawei usually bills WAF/CFW/DEW/DBSS/DSC billing by edition, protected assets, requests/events, or scans. Recalculate TCO with peak load, request volume, retention period, and cross-region/interconnect traffic before production migration.
Huawei Cloud
Huawei equivalent service
Cloud Bastion HostShortname: CBH
General function: Privileged Access Security
Privileged access and operation audit bastion service.
Keywords: bastion, privileged access, audit