Share via

Edge locations for Microsoft Entra ID and routing traffic to the closest endpoint

Shreyas Rastogi 145 Reputation points
2024-09-16T15:55:05.79+00:00

How can we ensure the traffic reaches the closest Entra location if a user is accessing an application in cities like Toronto, Montreal, Vancouver, or Halifax? Are there any edge locations available for Entra, and is there any link to check that? Additionally, can we set up peering from the location to the Microsoft network for Entra and other Azure resources?

Microsoft Authenticator
Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation.
6,791 questions
Microsoft Entra Private Access
Microsoft Entra Private Access
Microsoft Entra Private Access provides secure and deep identity-aware, Zero Trust network access to all private apps and resources.
63 questions
Microsoft Entra Internet Access
Microsoft Entra Internet Access
A Microsoft Entra service that provides an identity-centric Secure Web Gateway that protects access to internet, software as a service (SaaS), and Microsoft 365 apps and resources.
23 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,652 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Givary-MSFT 32,501 Reputation points Microsoft Employee
    2024-09-26T05:17:59.8466667+00:00

    @Shreyas Rastogi Apologies for the delayed response in reviewing this post, regarding the above mentioned ask - To ensure that the traffic reaches the closest Entra ID location when a user is accessing an application in cities like Toronto, Montreal, Vancouver, or Halifax, you can use Azure Traffic Manager. Azure Traffic Manager is a DNS-based traffic load balancer that can route traffic to the closest Entra ID location based on the user's geographic location. - https://learn.microsoft.com/en-us/azure/traffic-manager/traffic-manager-overview

    https://azure.microsoft.com/en-us/explore/global-infrastructure/geographies/#services

    To set up peering from your location to the Microsoft network for Entra ID and other Azure resources, you can use Azure ExpressRoute. Azure ExpressRoute is a dedicated, private connection between your on-premises infrastructure and Azure datacenters. It provides a more reliable and secure connection than a public internet connection.

    To set up Azure ExpressRoute, you will need to work with a connectivity provider to establish a connection between your on-premises infrastructure and Azure datacenters. You can then configure Azure ExpressRoute to route traffic to Azure AD and other Azure resources.

    It's worth noting that Azure Traffic Manager and Azure ExpressRoute are separate services that can be used together to optimize traffic routing and improve performance. By using Azure Traffic Manager to route traffic to the closest Entra ID location and Azure ExpressRoute to establish a dedicated, private connection to Azure datacenters, you can ensure that your users have the best possible experience when accessing Entra ID and other Azure resources.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.