你当前正在访问 Microsoft Azure Global Edition 技术文档网站。 如果需要访问由世纪互联运营的 Microsoft Azure 中国技术文档网站,请访问 https://docs.azure.cn。
Start-AzJitNetworkAccessPolicy
调用临时网络访问请求。
语法
Start-AzJitNetworkAccessPolicy
-ResourceGroupName <String>
-Location <String>
-Name <String>
-VirtualMachine <PSSecurityJitNetworkAccessPolicyInitiateVirtualMachine[]>
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
Start-AzJitNetworkAccessPolicy
-VirtualMachine <PSSecurityJitNetworkAccessPolicyInitiateVirtualMachine[]>
-ResourceId <String>
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
Start-AzJitNetworkAccessPolicy
-InputObject <PSSecurityJitNetworkAccessPolicyInitiateInputObject>
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
说明
调用临时网络访问请求。 根据配置的 JIT 网络访问策略验证请求,如果允许,请根据用户的请求打开网络连接。 请求将记录在策略中供以后查看,并在超出指定持续时间时终止。
示例
示例 1
$MyResource = Get-AzResource -Id /subscriptions/xxxxxxx-xxxxx-xxxxx-xxxxxxx/resourceGroups/PolicyDemo/providers/Microsoft.Compute/virtualMachines/PolicyDemoVM1
$JitPolicy = (@{
id = $MyResource.ResourceId;
ports = (@{
number = 22
endTimeUtc = Get-Date (Get-Date -AsUTC).AddHours(1) -Format O
allowedSourceAddressPrefix = @($MyPublicIP)
})
})
$ActivationVM = @($JitPolicy)
Start-AzJitNetworkAccessPolicy -ResourceGroupName $($MyResource.ResourceGroupName) -Location $MyResource.Location -Name "default" -VirtualMachine $ActivationVM
通过端口 22 从公共 IP 打开网络连接 1 小时(未显示)。
参数
-Confirm
提示你在运行 cmdlet 之前进行确认。
Type: | SwitchParameter |
Aliases: | cf |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-DefaultProfile
用于与 Azure 通信的凭据、帐户、租户和订阅。
Type: | IAzureContextContainer |
Aliases: | AzContext, AzureRmContext, AzureCredential |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-InputObject
输入对象。
Type: | PSSecurityJitNetworkAccessPolicyInitiateInputObject |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | True |
Accept wildcard characters: | False |
-Location
位置。
Type: | String |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-Name
资源名称。
Type: | String |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-ResourceGroupName
资源组名称。
Type: | String |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-ResourceId
资源 ID。
Type: | String |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | True |
Accept wildcard characters: | False |
-VirtualMachine
自动预配。
Type: | PSSecurityJitNetworkAccessPolicyInitiateVirtualMachine[] |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-WhatIf
显示运行该 cmdlet 时会发生什么情况。 cmdlet 未运行。
Type: | SwitchParameter |
Aliases: | wi |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
输入
PSSecurityJitNetworkAccessPolicyInitiateInputObject