Configure network security for Azure Storage

Module
7 Units

Intermediate

Security Engineer

Azure

Azure Storage

Azure Virtual Network

Azure Private Link

Configure network-layer access controls for Azure Storage accounts. Apply firewall rules, define virtual network and IP-based access, configure resource instance rules for Azure AI services, manage trusted service exceptions, and implement private endpoints to eliminate public endpoint exposure.

Learning objectives

After completing this module, you'll be able to:

Describe how Azure Storage firewall rules restrict access through the public endpoint
Create virtual network rules and IP network rules for approved sources
Configure resource instance rules for Azure AI and PaaS services
Add trusted service exceptions for Azure platform services
Implement private endpoints for fully private storage connectivity

Prerequisites

Familiarity with Azure Virtual Networks, subnets, and service endpoints
Understanding of Azure private endpoints and Private Link
Familiarity with Azure AI Foundry or Azure Machine Learning at a conceptual level

Get started with Azure

Choose the Azure account that's right for you. Pay as you go or try Azure free for up to 30 days. Sign up.

Introduction min
Describe Azure Storage network security controls min
Configure virtual network and IP rules min
Configure resource instance rules and trusted services min
Implement private endpoints for storage accounts min
Knowledge check min
Summary min

Start