Network misconfigurations

Azure virtual machine with Windows distribution allows direct RDP access from the Internet


Remote Desktop Protocol (RDP) allows a user to connect to another computer ,with Windows operating systems, over a network connection. The RDP port (3389) is open on your Windows virtual machine and allows all incoming traffic from the Internet. In order to keep security best practices, you should restrict access to be only from allowed IP addresses.
  • Recommended Mitigation

    Configure networking rule to allow incoming RDP traffic from allowed IP addresses only.