![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 23%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECC%3C/text%3E%3C/svg%3E)
Azure Disk Storage
A high-performance, durable block storage designed to be used with Azure Virtual Machines and Azure VMware Solution.
572 questions
Hi Clive,
Under your current configuration, in order for a managed disk to be accessible for download it must be a) unattached or the associated VM must be Deallocated AND b) a SAS must be generated. In order to generate the SAS, the user must have necessary permission to the disk.
To better familiarize yourself, you can perform some quick tests. Create a new resource group, and in that group create a small (B1S) Ubuntu VM with Standard HDD 30GB, no public IP, etc. After creation, immediately Stop it using portal so that it will be Deallocated and not accruing compute charges.
With this test VM, navigate to its managed disk, click Disk Export blade, click Generate URL button. Once the URL has been generated, if you want you can download the VHD (this will accrue bandwidth charges) or just click Cancel export button.
Additional tests you could do is give another test user account access to the VM using role assignments, sign in as that user using a different browser profile, and then see if the user is able to generate URL and download the disk.
Once you are finished testing, please delete the resource group so that you don't accrue any more charges over time.
Please click Accept Answer and upvote if the above was helpful.
Thanks.
-TP