Create cross tenant private endpoint with EventHubs

Joseph Niemiec 0 Reputation points
2023-11-10T17:28:42.05+00:00

Hello,

I am struggling to make a cross-tenant (two different accounts) private endpoint to EventHubs; any direction would help.

The document here says that:

Private endpoints can be created to resources in different region and even different tenants - Connect privately to services running in other regions. The consumer's virtual network could be in region A and it can connect to services behind Private Link in region B.

I have two accounts, in account A we have created an eventhub namespace and eventhub that is private, in its own virtual network, and has its own private endpoint. In account B we are trying to add a private endpoint to access this eventhub resource, but no resource ID that we put into the Private Endpoint wizard is valid. We have tried a lot of different resource ID's - the eventhub, the eventhub namespace, the privateEndpointConnections ID from account A, but none of these work.

Where does Account A get the resourceID that Account B needs to use in the 'create a private endpoint' wizard to add access to it?

Thank you!

Resource IDs that didn't work below

/subscriptions/###########/resourceGroups/#########/providers/Microsoft.EventHub/namespaces/stevesbaitshop
/subscriptions/###########resourceGroups/########/providers/Microsoft.Resources/deployments/stevesbaitshop_########/subscriptions/########/resourceGroups/######/providers/Microsoft.EventHub/namespaces/stevesbaitshop/privateEndpointConnections/#####
/subscriptions/########/resourceGroups/#######/providers/Microsoft.Network/privateEndpoints/stevesbaitshop
/subscriptions/#######/resourceGroups/#######/providers/Microsoft.EventHub/namespaces/stevesbaitshop/eventhubs/baitmaker

Screenshot 2023-11-10 at 12.07.57 PM

Azure Event Hubs
Azure Event Hubs
An Azure real-time data ingestion service.
641 questions
Azure Private Link
Azure Private Link
An Azure service that provides private connectivity from a virtual network to Azure platform as a service, customer-owned, or Microsoft partner services.
509 questions
{count} votes

2 answers

Sort by: Most helpful
  1. Joseph Niemiec 0 Reputation points
    2023-11-10T18:47:16.9166667+00:00

    Wanted to provide the answer we found. If you don't have a virtual network yet created everything will be invalid, you have to have a virtual network created beforehand and then you will be able to use the resourceID for the eventhub namespace, and it will have a subtype resource of namespace.


  2. PRADEEPCHEEKATLA-MSFT 89,726 Reputation points Microsoft Employee
    2023-11-12T13:27:12.2+00:00

    @Joseph Niemiec - I'm glad that you were able to resolve your issue and thank you for posting your solution so that others experiencing the same thing can easily reference this! Since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others ", I'll repost your solution in case you'd like to accept the answer .

    Ask: I am struggling to make a cross-tenant (two different accounts) private endpoint to EventHubs; any direction would help.

    Solution: Wanted to provide the answer we found. If you don't have a virtual network yet created everything will be invalid, you have to have a virtual network created beforehand and then you will be able to use the resourceID for the eventhub namespace, and it will have a subtype resource of namespace.

    If I missed anything please let me know and I'd be happy to add it to my answer, or feel free to comment below with any additional information.

    If you have any other questions, please let me know. Thank you again for your time and patience throughout this issue.


    Please don’t forget to Accept Answer and Yes for "was this answer helpful" wherever the information provided helps you, this can be beneficial to other community members

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.