Create a private endpoint for Azure Data Manager for Agriculture
Azure Private Link provides private connectivity from a virtual network to Azure platform as a service (PaaS). It simplifies the network architecture and secures the connection between endpoints in Azure by eliminating data exposure to the public internet.
By using Azure Private Link, you can connect to an Azure Data Manager for Agriculture service from your virtual network via a private endpoint, which is a set of private IP addresses in a subnet within the virtual network. You can then limit access to your Azure Data Manager for Agriculture Preview instance over these private IP addresses.
This article describes how to create a private endpoint and approval process for Azure Data Manager for Agriculture Preview.
Create a virtual network in the same subscription as the Azure Data Manager for Agriculture Preview instance. This virtual network will allow automatic approval of the Private Link endpoint.
How to set up a private endpoint
Private Endpoints can be created using the Azure portal, PowerShell, or the Azure CLI:
Approval process for a private endpoint
Once the network admin creates the private endpoint, the Data Manager for Agriculture admin can manage the private endpoint connection to Data Manager for Agriculture resource.
Navigate to the Data Manager for Agriculture resource in Azure portal. Select the Networking tab in the left pane, this will show a list of all Private Endpoint Connections and Corresponding Private Endpoint created.
Select an individual private endpoint connection from the list.
The Data Manager for Agriculture administrator can choose to approve or reject a private endpoint connection and can optionally add a short text response also.
After approval or rejection, the list will reflect the appropriate state along with the response text.
Finally click on the private endpoint name to see the network interface details and IP address of your private endpoint.
Disable public access to your Data Manager for Agriculture resource
If you want to disable all public access to your Data Manager for Agriculture resource and allow connections only from your virtual network then you need to ensure that your private endpoint connections are enabled and configured. To disable public access to your Data Manager for Agriculture resource:
- Go to the Networking page of your Data Manager for Agriculture resource.
- Select the Deny public network access checkbox.