Hello,
Today we would like to check the working solution for immutable storage in Azure. And I am really wondering how to configure that type of access:
If the access node is local server and resource is not appeared in Azure.
Regards,
Michal
Hello,
Today we would like to check the working solution for immutable storage in Azure. And I am really wondering how to configure that type of access:
If the access node is local server and resource is not appeared in Azure.
Regards,
Michal
Best answer by Jiye
Hi @Michal128,
If your Media agent is on-prem you can use other methods to authenticate.
Easiest way would be to use the access key.
You can find the access key id from your azure portal > storage account > your storage account > access keys on the left panel under Security+Networking.
When you use this, you don’t need to assign role to your storage account because this works like a root password (has all permissions)
When you configure on Commcell console, go to Storage resources > Libraries > Add > Cloud Storage library > Cloud storage. Then name the storage (doesn’t have to match the storage account name), select your local MediaAgent, select Access & secret keys, leave service host to blob.core.windows.net, click Create new for credentials.
Then add the credential name, then put your storage account as ‘Account name’ and add the key that you copied from azure portal.
Then find the container on azure portal under the storage account, specify it, and continue.
The second method is to create an application on azure and use it to authenticate. On azure portal, go to App registration and New registration. Name the application and register.
Then go to the storage account > IAM > Add the application as ‘Contributor’
When you configure on Commcell console, go to Storage resources > Libraries > Add > Cloud Storage library > Cloud storage. Then name the storage (doesn’t have to match the storage account name), select MediaAgent, select IAM AD application role assignment, leave service host to blob.core.windows.net, click Create new for credentials.
For the Tenant id, application id, copy it from your azure portal > app registration > your app > overview.
For application secret, on your azure portal > app registration > your app > certificates & secret > +new client secret and copy it from there
For account name, type your storage account name (jlsoutheast in my case).
Thank you.
Kind regards,
Jiye Lee
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.