Forum Discussion

_fly_robin_fly_'s avatar
_fly_robin_fly_
Copper Contributor
Oct 05, 2023

Disable auto port blocking of unwanted JIT-Policy

I'm running a VM on Azure with ports open. I recently noticed that Azure is automatically closing ports that were previously open under "Network". From my research, this seems to be caused by a Just...
_fly_robin_fly_'s avatar
_fly_robin_fly_
Copper Contributor
Oct 06, 2023

govindagoud 

Thanks for your reply!
When adding a rule with higher priority, azur creates or updates a rule, to again lock the port after some time.

So I have to remove the JIT access of the VM. When navigating to Microsoft Defender for Cloud, it looks like Microsoft Defender is not even active:

 

Is there another way to remove the JIT-Access? 

Matan_Shabtay's avatar
Matan_Shabtay
Icon for Microsoft rankMicrosoft
Oct 06, 2023

_fly_robin_fly_ 

You may have some JIT policy that was some how created even when your subscription doesnt have Defender for Servers enabled.

Try to delete that JIT policy using API.

Go to Azure portal API playground by following this link

https://ms.portal.azure.com/#view/Microsoft_Azure_Resources/ArmPlayground

 

List all the JIT policies under your subscription using the api described here

https://learn.microsoft.com/en-us/rest/api/defenderforcloud/jit-network-access-policies/list?tabs=HTTP

 

Find the JIT policy associated with that VM and delete it

https://learn.microsoft.com/en-us/rest/api/defenderforcloud/jit-network-access-policies/delete?tabs=HTTP

 

Resources