Forum Discussion

_fly_robin_fly_'s avatar
_fly_robin_fly_
Copper Contributor
Oct 05, 2023

Disable auto port blocking of unwanted JIT-Policy

I'm running a VM on Azure with ports open. I recently noticed that Azure is automatically closing ports that were previously open under "Network". From my research, this seems to be caused by a Just...
govindagoud's avatar
govindagoud
Brass Contributor
Oct 05, 2023

when vm is enabled for JIT access, this rule denies virtual network access. If you wish to allow access to your virtual network, add an inbound rule with higher priority to Allow VirtualNetwork to VirtualNetwork.


If you want to remove JIT access to you VM you can do it from 

Microsoft Defender for Cloud->Workload protection->Just in time access -> configured ->( Select the VM and remove it from configuration)

 

 

 

_fly_robin_fly_'s avatar
_fly_robin_fly_
Copper Contributor
Oct 05, 2023

govindagoud 

Thanks for your reply!
When adding a rule with higher priority, azur creates or updates a rule, to again lock the port after some time.

So I have to remove the JIT access of the VM. When navigating to Microsoft Defender for Cloud, it looks like Microsoft Defender is not even active:

 

Is there another way to remove the JIT-Access?