1. Home
  2. Mapping Frameworks
  3. Azure Home
  4. Just-in-Time VM Access

Azure just-in-time_vm_access Mappings

This control locks down inbound traffic to management ports for protocols such as RDP and SSH and only provides access upon request for a specified period of time. This reduces exposure to attacks while providing easy access when you need to connect to a virtual machine. Specific permissions are required to request access to virtual machines that have this control enabled and access can be requested through the Azure web UI, PowerShell, and a REST API.

Mappings

Capability ID Capability Description Category Value ATT&CK ID ATT&CK Name
just-in-time_vm_access Just-in-Time VM Access protect minimal T1190 Exploit Public-Facing Application
just-in-time_vm_access Just-in-Time VM Access protect significant T1133 External Remote Services
just-in-time_vm_access Just-in-Time VM Access protect significant T1110 Brute Force
just-in-time_vm_access Just-in-Time VM Access protect significant T1110.003 Password Spraying
just-in-time_vm_access Just-in-Time VM Access protect significant T1110.001 Password Guessing
just-in-time_vm_access Just-in-Time VM Access protect significant T1110.004 Credential Stuffing