azure virtual-machine azure-virtual-machine rdp hardening

Can I create a generalized vm image with RDP disabled

How can we create windows VM image with RDP disabled for VMs created from that image? I want publish an RDP hardened image.

Solution

You can do this with a Custom Script Extension for Windows

Create a PowerShell scripts which disables RDP and reference it:

{
  "fileUris": ["https://mystorage.blob.core.windows.net/privatecontainer/script1.ps1"],
  "commandToExecute": "powershell.exe script1.ps1",
  "managedIdentity" : {}
}

Powershell script to disable RDP in registry:

Invoke-Command –Computername "customname" –ScriptBlock {Set-ItemProperty -Path "HKLM:\System\CurrentControlSet\Control\Terminal Server" -Name "fDenyTSConnections" –Value 1}

What is a difference between elastic computing and serverless computing?
Access Sharepoint Online Files from .NET Worker Service via Microsoft Graph/OAuth - Unauthorized or Access Denied error (401)
How do I fix SerializationNotSupportedParentType and ThrowNotSupportedException_ConstructorContainsNullParameterNames exception in System.Text.Json?
Update VCore by database in power shell
While scanning a simple key, could not find expected ':'. Syntax error in azure-pipeline.yaml
I'm not able to call the Azure document intelligence api using the latest api version "2024-02-29-preview"
AzureWebJobsStorage Managed Identity not working
Get-RemoteDomain in powershell exchange online error : The term 'Get-RemoteDomain' is not recognized as the name of a cmdlet
How can I Get Started Using Certificates to Authenticate my APIs Using Azure Key Vault?
Azure Storage blob getting the io.netty.channel.StacklessClosedChannelException while generating /downloading the from SasUrl
How to set up a site-to-site connection between Azure VNet and an on-premises network with a single IP address for traffic selectors?
Summarization of docx or pdf document
Unable to use Azure Developer CLI (azd) in vsCode even after extensions installed
How to configure backend application on Container Apps
WebJob is stopping due to website shutting down
Azure SQL trigger for Functions configuration problem
Does azure blob storage support http2?
Azure Pronunciation Assessment Could not deserialize speech context error
Is there a query to run so I can get a list of users who has NOT logged in, in the past 30 days?
How do I Parse FormData containing a audio file in AZ function app in 2025
Not able to delete Public IP address in azure
Azure Devops Apple App Store Release.Missing value for the attribute 'whatsNew'
Azure Storage accounts container public access level has dissabled
Issue with adding delegated Graph API permission to Enterprise app with Terraform
Getting an error when using the Flexible File Destination Task in Visual Studio 2022 SSIS
Problem with Azure Email Communication Service Custom Domain
How to refresh client assertion in ConfidentialClientApplication?
Using Microsoft Graph Explorer (we have code too) we can GET All Subscriptions, but GET one by ID gives access error
Invalid operands found for operator -eq
nginx - php-fpm - azure container app returns truncated pages