Forum Discussion
STTHV
Jun 20, 2020Copper Contributor
Removing Inbound port rule in NSG not blocking traffic
Playing with JIT access to a Windows VM I wanted to close external RDP access prior to JIT time range expiration. As there does not seem to be a suitable command I tried removing the JIT-generated 3...
STTHV
Jun 22, 2020Copper Contributor
sadly I must have missed that part in the documentation, thanks for pointing it out to me! Do you see another option to lock out an an administrative access with immediate effect, ie. without waiting for the set JIT window to expire?
hspinto
Microsoft
Jun 22, 2020
what you want to accomplish can be done from within the OS. For example, you could trigger an automated that would forcefully logoff all active sessions.
Another option could also be using JIT integrated with Azure Firewall. Unlike NSGs, Azure Firewall drops existing sessions impacted by rule changes. More details here.
- STTHVJun 28, 2020Copper Contributorgreat, thanks for the hint to use JIT with the firewall!