Forum Discussion
Azure ATP read-only user hammering RDP and TCP35 ports
Hi! Our Security scans showed that the user account used in Azure ATP as read-only account (Only domain user) is used to try RDP and TCP35 ports from domain controllers a lot. As the source is do...
Hi Mtee- ,
Following Eli respond, you can read more about it:
https://docs.microsoft.com/en-us/azure-advanced-threat-protection/atp-nnr-policy
Thanks,
Tali