![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 89%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
Azure Data Explorer
An Azure data analytics service for real-time analysis on large volumes of data streaming from sources including applications, websites, and internet of things devices.
577 questions
Thanks for posting your question in the Microsoft Q&A forum
Managed private endpoints are the primary secure method for connecting Azure Data Explorer to storage accounts with public access disabled. Managed private endpoints create a one-way private connection from Azure Data Explorer to your storage account, ensuring that all traffic remains within the Azure backbone network and does not traverse the public internet
Managed identities provide another secure way to connect by allowing the Data Explorer cluster to authenticate as itself, without needing shared keys or secrets. You must configure the storage account to recognize Azure Data Explorer as a trusted service and create a network rule exception for trusted Azure services
This method can be used in conjunction with managed private endpoints or as an alternative for certain scenarios, but for storage accounts with public access disabled and strict network controls, managed private endpoints are preferred.
Please don't forget to close up the thread here by upvoting and accept it as an answer if it is helpful