This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 24%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKC%3C/text%3E%3C/svg%3E)
Under the Configuration blade of a VM, there is a section called "Just-in-time VM access" and I enabled it. That was a mistake because I know how to manage the firewall rules and when I delete the JIT security center rule that is automatically applied, it comes back after a day or so. So, how do I disable it? The page itself says:
But that is not correct. When you go to Azure Security Center, there's no option to disable JIT VM Access.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 56.00000000000001%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EES%3C/text%3E%3C/svg%3E)
@Keith Culpepper
The proper way to remove Security Center's JIT policy is to go the Security Center portal -> Azure Defender -> "Just-in-time VM access" under the Advances protection and remove the policy from the configured VM.
Removing the NSG rule alone will not do the trick as JIT has recover option.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 9%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EES%3C/text%3E%3C/svg%3E)
important note - when you do get to the list - Security Center > Azure Defender > Just In Time access (tile at the bottom), even if it says "none" - you have to RIGHT CLICK and "Remove"; there isn't anything else obvious in the GUI that lets you remove the JIT setup.
I would love to disable it, but none of my virtual machines ever appear in this list (I let it sit for 30 minutes and it never loads):
Please filter only the relevant subscription and check again...
How in the world did you know to do that? I've been fighting this for days and something as simple as selecting the correct subscription allowed the VMs to load. This seems like a bug and should somehow be reported so they can fix this.
I simply saw the (Loading...) so I figured that there's one subscription hanging the resources load.
Yes, it does sound like a bug. I guess you had many subscriptions selected and some of them not onboarded to Security Center at all (as oppose to Free subscriptions that still not eligible for JIT but onboarded to ASC, thus the purple sale bar above).
I'll try to reproduce the same for engineering to check.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 37%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EOG%3C/text%3E%3C/svg%3E)
In the search bar, search for Microsoft Defender for Cloud >Workload Protection>Just-in-time VM access. ![213051-image.png][1] In the Just-in-time VM access section, right click on the dots and remove your VM from JIT protection. ![212988-image.png][2] [1]: /api/attachments/213051-image.png?platform=QnA [2]: /api/attachments/212988-image.png?platform=QnA