Share via

Entra Private Access

Mahi 0 Reputation points
2025-02-10T13:05:19.3066667+00:00

We use Microsoft Always on VPN service for user to acecss on-premise resources when they are outisde the office netwok. This service is deployed in West-US datacenter. We have user group in India who need RDP and file service hosted in that brach office. At this point in time Always on VPN is perform for India users is very slow due high latency as AOVPN is deployed in West US. We consider deploying Entra Private Access for India user group. We have our Application proxy service deployed in west US where our tenant is present. So we consider deploying App proxy connector group in India on-premise branch office server to bind Entra private access service. Is this enough for deliverying optimized Entra Private Access service? Or do I need to consider deploying Azure Front door and deliver Entra Private Access with that? Does that bring big performace difference?

Azure Front Door
Azure Front Door
An Azure service that provides a cloud content delivery network with threat protection.
750 questions
Azure Content Delivery Network
Microsoft Entra Private Access
Microsoft Entra Private Access
Microsoft Entra Private Access provides secure and deep identity-aware, Zero Trust network access to all private apps and resources.
82 questions
Microsoft Entra
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Navya 15,465 Reputation points Microsoft Vendor
    2025-02-13T07:01:17.43+00:00

    Hi @Mahi

    Thank you for posting this in Microsoft Q&A.

    I understand that you are looking to optimize the delivery of the Entra Private Access service for your user group in India, who need to access RDP and file services hosted in your branch office.

    By deploying the App Proxy Connector in your on-premises branch office in India, you’re taking an important step toward localizing traffic for your users. This enables Entra Private Access to function as a reverse proxy, connecting users to on-premises resources (such as RDP and file shares) locally, without the need to route traffic to the West US datacenter.

    Azure Front Door offers low-latency, high-throughput content delivery at scale, from both cloud and on-premises infrastructure to users globally.

    Deploying an App Proxy Connector group at your India branch office to integrate with Entra Private Access should significantly optimize service delivery for your India-based users. While Azure Front Door can provide additional performance improvements, it may not be necessary in this case unless you have broader global optimization needs.

    Hope this helps. Do let us know if you any further queries.

    If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.