• Administrator overview
• Managing users and permissions
  • User roles and access permissions
  • Creating users
  • Editing users
  • Unlocking a user account
  • Resending a user activation link
  • Deleting or deactivating users
  • Using groups
  • Managing departments
  • Managing passwords and password policies
  • Setting account-wide access policies
  • Changing a resource owner
  • Using Single Sign-On (SSO)
    • Using Single Sign-on (SSO) with Azure Active Directory (AAD)
    • Configuring an ADFS claim rule for SSO
• Managing account-wide settings
  • Adding container registries
• Managing public IP addresses
• Managing WANs
  • Overview: VPNs
    • Creating a VPN
      • VPN configuration parameters
        • AWS VPC: VPN configuration example
        • Azure VPN: VPN configuration example
        • Cisco ASA: VPN configuration example
        • Cisco IOS: VPN configuration example
        • Juniper SRX: VPN configuration example
        • pfSense: VPN configuration example
        • strongSwan: VPN configuration example
  • Overview: Kyndryl Cloud Uplift on Azure ExpressRoute connections
    • Creating a Kyndryl Cloud Uplift on Azure ExpressRoute connection
    • Creating a customer-managed Kyndryl Cloud Uplift on Azure ExpressRoute connection
  • Testing the WAN
    • Troubleshooting VPN test failures
  • Connecting an environment network to a WAN
  • Configuring WAN access controls
  • Editing an existing WAN connection
  • Disable a WAN
• Managing Metered RAM and storage usage
  • How usage is calculated
  • Viewing current usage and enabling pay-as-you-go capacity
  • Reserved capacity for Kyndryl Cloud Uplift on Azure
  • Reserved capacity for Kyndryl Cloud Uplift on IBM Cloud
  • Setting usage limits
  • Setting up notifications
  • VM pinning
• Reporting overview
  • Viewing and exporting user information
  • Viewing and exporting group information
  • Generating department reports
  • Generating audit reports
    • Configuring the webhook service for audit data
  • Viewing usage data
    • Using labels for in-depth reporting
    • Creating usage label categories
    • Configuring the webhook service for usage data
  • Enabling other users to generate reports
• Security best practices
• Other best practices
• Sharing templates with users in other accounts
• Finding the source environment from a sharing portal URL
• Including your logo in the Kyndryl Cloud Uplift interface

Azure VPN: VPN configuration example (Azure site-to-site VPN connection)

This page provides more specific values for configuring a VPN connection between Kyndryl Cloud Uplift and an Azure VPN. It contains sample VPN configuration parameters to enter on the Kyndryl Cloud Uplift VPN page, as well as the configuration values to enter in your Azure account.

For general information about the configuration process for each side of the VPN connection, first see:

• Creating a VPN connection to your Kyndryl Cloud Uplift account.
• Create a Site-to-Site connection in the Azure portal

Sample VPN configuration

In the Azure portal:

1. Follow the instructions at Create a Site-to-Site connection in the Azure portal.

   • During the Create the VPN gateway step, select VPN type: Route-based.

   • During the Create the local network gateway step, use the following values:

     • IP address: Enter the static public IP address that is (or will be) associated with your Kyndryl Cloud Uplift VPN. This is either automatically assigned when you click Create VPN in Kyndryl Cloud Uplift, or you can manually select from the available static public IP addresses in your Kyndryl Cloud Uplift account.
     • Address space: Enter the subnet range for the IP addresses you want to access in your Kyndryl Cloud Uplift account. This value must match the Kyndryl Cloud Uplift subnet range defined in your Kyndryl Cloud Uplift VPN configuration.
   • In the Configure your VPN device step, note the public IP address of your virtual network gateway.

2. Download a VPN device configuration script. For example, select one of the Juniper device files.

Kyndryl Cloud Uplift VPN configuration

Parameters to enter on your Kyndryl Cloud Uplift VPN page:

Troubleshooting

If the VPN appears to not be working, try the following:

• Verify that you have a strong pre-shared key and that it’s correctly entered in both Kyndryl Cloud Uplift and Azure.
• Verify that the VPN settings in both Kyndryl Cloud Uplift and Azure match the recommended settings above.
• If you changed any settings in Kyndryl Cloud Uplift or Azure, the Azure VPN gateway won’t use the changed settings until you reset it. For instructions, see Reset a VPN Gateway.

• In some cases, the Kyndryl Cloud Uplift VPN test will show failures for a correctly configured VPN. Try connecting directly from a Kyndryl Cloud Uplift VM to an Azure VM.

  Make sure both of the VMs are connected to networks attached to the VPN.