Azure_VirtualNetworks_74

VirtualMachine with administrative service: Remote Desktop (TCP:3389) is exposed to a wide network scope

Description

Administrative access to instances is an attack vector that should be restricted to prevent common exploits. This rule detects network settings that may expose instances to RDP, SSH etc.

Remediation

Delete the rules that allow permissive Remote Desktop access and limit the scope only for a trusted bastion server within the VNET using non public IP addresses.

Service

Networking

Severity

Low

Compliance

Mapping

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!