Comment about JIT: I created Application security group, then added AppSG to the NICs of two VMs (even different vNets), enabled JIT from one of the VM. By looking to the Networking Inbound port rules i can see that second VM also has JIT rule propagated. The only differences is that the Destination IP is the private IP of the VM which i've added to JIT. Not sure if that's a bug or by design, but would be really great to restrict Users access to the Web Site (cluster vm in the LB backend pool) by using JIT with destination to the Application security group 6:21 27 Subscriptions azure boot camp (bravo) has 58 resources - what are those? Objects in that subscription? In my case it shows 17, but from navigation/subscriptions/resources i actually have 81
Got my JIT questions answered, the reason why is that both VMs belongs to the same NSG (since destination is only to the VM requesting access to, other VM is still blocked) - has nothing to do with APSG, JIT works as expected
Comment about JIT:
I created Application security group, then added AppSG to the NICs of two VMs (even different vNets), enabled JIT from one of the VM. By looking to the Networking Inbound port rules i can see that second VM also has JIT rule propagated.
The only differences is that the Destination IP is the private IP of the VM which i've added to JIT.
Not sure if that's a bug or by design, but would be really great to restrict Users access to the Web Site (cluster vm in the LB backend pool) by using JIT with destination to the Application security group
6:21
27 Subscriptions
azure boot camp (bravo) has 58 resources - what are those? Objects in that subscription?
In my case it shows 17, but from navigation/subscriptions/resources i actually have 81
Got my JIT questions answered, the reason why is that both VMs belongs to the same NSG (since destination is only to the VM requesting access to, other VM is still blocked) - has nothing to do with APSG, JIT works as expected
thanks for pointing this out!
@@AzureAcademy what about Azure sécurity availbility dr bcm
What about it?
Shame this is too old and outdated to even watch and or follow along. Next...
Really…how so? The largest difference is the name is not security center?
Give me a list and I will remake it