Skip to main content

Remediation

Restrict Public RDP Accessโ€‹

From OCI CLIโ€‹

Review the current ingress rules before updating the security list:

oci network security-list get \
    --security-list-id {{security-list-ocid}}

Update the security list with a revised ingress rule set that removes public RDP access or restricts RDP to trusted source CIDRs:

oci network security-list update \
    --security-list-id {{security-list-ocid}} \
    --ingress-security-rules file://ingress-rules.json

The ingress-rules.json file must contain the complete intended ingress rule set for the security list. Preserve required business traffic and replace any RDP rule sourced from 0.0.0.0/0 or ::/0 with narrowly scoped CIDR ranges.