You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/private-link/tutorial-private-endpoint-sql-portal.md
+17-2Lines changed: 17 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,7 +1,7 @@
1
1
---
2
2
3
3
title: 'Tutorial: Connect to an Azure SQL server using an Azure Private Endpoint - Portal'
4
-
description: Use this tutorial to learn how to create a Azure SQL server with a private endpoint using the Azure portal.
4
+
description: Use this tutorial to learn how to create an Azure SQL server with a private endpoint using the Azure portal.
5
5
services: private-link
6
6
author: asudbring
7
7
# Customer intent: As someone with a basic network background, but is new to Azure, I want to create a private endpoint on a SQL server so that I can securely connect to it.
@@ -22,7 +22,7 @@ In this tutorial, you learn how to:
22
22
> [!div class="checklist"]
23
23
> * Create a virtual network and bastion host.
24
24
> * Create a virtual machine.
25
-
> * Create a Azure SQL server and private endpoint.
25
+
> * Create an Azure SQL server and private endpoint.
26
26
> * Test connectivity to the SQL server private endpoint.
27
27
28
28
## Prerequisites
@@ -192,6 +192,21 @@ In this section, you'll create a SQL server in Azure.
192
192
193
193
14. Select **Create**.
194
194
195
+
> [!IMPORTANT]
196
+
> When adding a Private endpoint connection, public routing to your Azure SQL logical server is not blocked by default. The setting "Deny public network access" under the "Firewall and virtual networks" blade is left unchecked by default. To disable public network access ensure this is checked.
197
+
198
+
## Disable public access to Azure SQL logical server
199
+
For this scenario, assume you would like to disable all public access to your Azure SQL Logical server, and only allow connections from your virtual network.
200
+
201
+
1. Ensure your Private endpoint connection(s) are enabled and configured.
202
+
2. Disable public access:
203
+
1. Navigate to the "Firewalls and virtual network" blade of your Azure SQL Logical Server
204
+
2. Click the box to check mark "Deny public network access"
205
+
206
+
:::image type="content" source="./media/tutorial-private-endpoint-sql-portal/pec-deny-public-access.png" alt-text="Deny public network access option":::
207
+
208
+
3. Click the Save icon to enable.
209
+
195
210
## Test connectivity to private endpoint
196
211
197
212
In this section, you'll use the virtual machine you created in the previous step to connect to the SQL server across the private endpoint.
0 commit comments