Security Center JIT recommendations when using Bastion and WVD RRS feed

  • Question

  • security center wants me to enable JIT for all my VMs, but none of my VMs have their own public IPs because they are reached by bastion or WVD .  I don't think enabling JIT will be beneficial to the operation of those services..but I want my secure score to go up ;)  

    Not sure what the MS intention is as far as these new indirect access methods ( WVD / bastion ) vs  JIT and security center's insistence that I enable it on all the things.

    Thursday, November 14, 2019 11:11 PM

All replies

  • I am checking this internally with the product team and update you on my findings.
    Friday, November 15, 2019 5:05 PM
  • Much appreciated. Thanks, Saurabh!
    Friday, November 15, 2019 6:40 PM