你当前正在访问 Microsoft Azure Global Edition 技术文档网站。 如果需要访问由世纪互联运营的 Microsoft Azure 中国技术文档网站,请访问 https://docs.azure.cn。
Start-AzJitNetworkAccessPolicy
调用临时网络访问请求。
语法
Start-AzJitNetworkAccessPolicy
-ResourceGroupName <String>
-Location <String>
-Name <String>
-VirtualMachine <PSSecurityJitNetworkAccessPolicyInitiateVirtualMachine[]>
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Start-AzJitNetworkAccessPolicy
-VirtualMachine <PSSecurityJitNetworkAccessPolicyInitiateVirtualMachine[]>
-ResourceId <String>
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Start-AzJitNetworkAccessPolicy
-InputObject <PSSecurityJitNetworkAccessPolicyInitiateInputObject>
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>] 说明
调用临时网络访问请求。 根据配置的 JIT 网络访问策略验证请求,如果允许,请根据用户的请求打开网络连接。 请求将记录在策略中供以后查看,并在超出指定持续时间时终止。
示例
示例 1
$MyResource = Get-AzResource -Id /subscriptions/xxxxxxx-xxxxx-xxxxx-xxxxxxx/resourceGroups/PolicyDemo/providers/Microsoft.Compute/virtualMachines/PolicyDemoVM1
$JitPolicy = (@{
id = $MyResource.ResourceId;
ports = (@{
number = 22
endTimeUtc = Get-Date (Get-Date -AsUTC).AddHours(1) -Format O
allowedSourceAddressPrefix = @($MyPublicIP)
})
})
$ActivationVM = @($JitPolicy)
Start-AzJitNetworkAccessPolicy -ResourceGroupName $($MyResource.ResourceGroupName) -Location $MyResource.Location -Name "default" -VirtualMachine $ActivationVM通过端口 22 从公共 IP 打开网络连接 1 小时(未显示)。
参数
-Confirm
提示你在运行 cmdlet 之前进行确认。
| Type: | SwitchParameter |
| Aliases: | cf |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-DefaultProfile
用于与 Azure 通信的凭据、帐户、租户和订阅。
| Type: | IAzureContextContainer |
| Aliases: | AzContext, AzureRmContext, AzureCredential |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-InputObject
输入对象。
| Type: | PSSecurityJitNetworkAccessPolicyInitiateInputObject |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-Location
位置。
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Name
资源名称。
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-ResourceGroupName
资源组名称。
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-ResourceId
资源 ID。
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-VirtualMachine
自动预配。
| Type: | PSSecurityJitNetworkAccessPolicyInitiateVirtualMachine[] |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-WhatIf
显示运行该 cmdlet 时会发生什么情况。 cmdlet 未运行。
| Type: | SwitchParameter |
| Aliases: | wi |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
输入
PSSecurityJitNetworkAccessPolicyInitiateInputObject