Did you know Resource instance rules for access to Azure Storage.

Did you know Resource instance rules for access to Azure Storage are now in public preview in all Azure public regions.

Some Azure resources cannot be isolated through a virtual network or an IP address rule. However, you'd still like to secure and restrict access to your storage account to only your application's Azure resources. You can now configure your storage accounts to allow access to only specific resource instances of select Azure services by creating a resource instance rule

for more information you refer to the MS documentation

https://docs.microsoft.com/en-us/azure/storage/common/storage-network-security?tabs=azure-portal

Accessing resource instance rules

Browse to the resource accoount and under the resource account you have networking section, simply select that

Managing virtual network rules

To modify vnet rules, simply select either add exiting network or create new network and apply the rule accordingly

Comments

Deploying an Automation Account with a Runbook and Schedule Using Bicep

Introduction Automation is a key component in many organizations' cloud strategy. Azure Automation allows you to automate the creation, deployment, and management of resources in your Azure environment. In this post, we will walk through the process of deploying an Automation Account with a Runbook and Schedule using Bicep, a new domain-specific language for deploying Azure resources. Intention My intention at the end is to run a PowerShell script to start and shutdown Azure VMs based on tag values. PowerShell script that I have used is from below l ink. And two of me collogue s ( Michael Turnley and Saudh Mohomad helped to modify the PowerShell script. Prerequisites Before we begin, you will need the following: An Azure subscription The Azure CLI installed on your machine. The Azure Bicep extension for the Azure CLI Creating the Automation Account The first step in deploying an Automation Account with a R...

Migrating Azure DevOps Variable Groups

Howdy Folks, I was working on an application modernization project. And there was a requirement to migrate application deployments from one project to another in Azure DevOps. deployment pipelines were heavily dependent on variable groups. So, we wanted to migrate these variables group to the new project. Couldn't find any solutions in internet for this, so came up with the below scripts. You can grab the scripts from the below GitHub URL. DaniduWeerasinghe911/Migrate-Azure-DevOps-Variable-Groups: This Repo Include PowerShell Scripts relating to Migrating Azure DevOps Variable Groups (github.com) Azure DevOps Variable Groups Azure DevOps Variable Groups are a way to store and manage sets of variables that can be used across multiple pipelines in Azure DevOps. These variables can include secrets, connection strings, and other sensitive information that is needed for builds and releases. Variable Groups provide a centralized way to manage these variables and ensure that they are cons...

Securing Azure Services with Fetian FIDO

Hey Folks Here again with another security topic with Fetian Fido. And once again Fetian devices proved their excellent quality and stability. For this I choose Fetian K33 - AllinPass FIDO Security Key – FEITIAN (ftsafe.com) and K39 - Single-button FIDO Security Keys | FEITIAN (ftsafe.com) Use case In an organization following changes needs to be implemented. 1. Update the password policy 2. Update the user session time out to 30 minutes Once these changes being implemented, the following issues need to be addressed 1. Users' complaint new passwords need to be so long 2. Users complain sessions time out makes them work so much slower with the longer passwords 3. Etc... Solution One of my friends reached out to me to help solve this problem. All I could think of was using passwordless auth with FIDO devices. We have decided to use Fido2 keys for better security and flexibility for the users. The FIDO (Fast IDentity Online) Alliance helps to pro...

Azure with Danidu

Search This Blog