Limit Access to Resource Over Network
Prevent access to file shares, remote access to systems, unnecessary services. Mechanisms to limit access may include use of network concentrators, RDP gateways, etc.
Techniques Addressed by Mitigation
If possible, use a Remote Desktop Gateway to manage connections and security configuration of RDP within a network.
|Enterprise||T1133||External Remote Services||
Limit access to remote services through centrally managed concentrators such as VPNs and other managed remote access systems.
Establish network access control policies, such as using device certificates and the 802.1x standard. Restrict use of DHCP to registered devices to prevent unregistered devices from communicating with trusted systems.
|Enterprise||T1076||Remote Desktop Protocol||
Use remote desktop gateways.
Disallow remote access to the webroot or other directories used to serve Web content.