|
5 | 5 | author: khdownie |
6 | 6 | ms.service: storage |
7 | 7 | ms.topic: include |
8 | | - ms.date: 04/15/2021 |
| 8 | + ms.date: 08/03/2022 |
9 | 9 | ms.author: kendownie |
10 | 10 | ms.custom: include file |
11 | 11 | --- |
12 | 12 | Navigate to the storage account for which you would like to create a private endpoint. In the table of contents for the storage account, select **Networking**, **Private endpoint connections**, and then **+ Private endpoint** to create a new private endpoint. |
13 | 13 |
|
14 | 14 | [](media/storage-files-networking-endpoints-private-portal/create-private-endpoint-0.png#lightbox) |
15 | 15 |
|
| 16 | + :::image type="content" source="media/storage-files-networking-endpoints-private-portal/create-private-endpoint-0.png" alt-text="Screenshot of the private endpoint connections item in the storage account table of contents." lightbox="media/storage-files-networking-endpoints-private-portal/create-private-endpoint-0.png" border="true"::: |
| 17 | + |
16 | 18 | The resulting wizard has multiple pages to complete. |
17 | 19 |
|
18 | | -In the **Basics** blade, select the desired resource group, name, and region for your private endpoint. These can be whatever you want, they don't have to match the storage account in any way, although you must create the private endpoint in the same region as the virtual network you wish to create the private endpoint in. |
| 20 | +In the **Basics** blade, select the desired subscription, resource group, name, network interface name, and region for your private endpoint. These can be whatever you want, they don't have to match the storage account in any way, although you must create the private endpoint in the same region as the virtual network you wish to create the private endpoint in. Then select **Next: Resource**. |
| 21 | + |
| 22 | + :::image type="content" source="media/storage-files-networking-endpoints-private-portal/private-endpoint-basics.png" alt-text="Screenshot showing how to provide the project and instance details for a new private endpoint." lightbox="media/storage-files-networking-endpoints-private-portal/private-endpoint-basics.png" border="true"::: |
| 23 | + |
| 24 | +In the **Resource** blade, select **file** for the target sub-resource. Then select **Next: Virtual Network**. |
| 25 | + |
| 26 | + :::image type="content" source="media/storage-files-networking-endpoints-private-portal/private-endpoint-resource.png" alt-text="Screenshot showing how to select which resource you would like to connect to using the new private endpoint." lightbox="media/storage-files-networking-endpoints-private-portal/private-endpoint-resource.png" border="true"::: |
| 27 | + |
| 28 | +The **Virtual Network** blade allows you to select the specific virtual network and subnet you would like to add your private endpoint to. Select dynamic or static IP address allocation for the new private endpoint. If you select static, you'll also need to provide a name and a private IP address. You can also optionally specify an application security group. When you're finished, select **Next: DNS**. |
| 29 | + |
| 30 | + :::image type="content" source="media/storage-files-networking-endpoints-private-portal/private-endpoint-virtual-network.png" alt-text="Screenshot showing how to provide virtual network, subnet, and IP address details for the new private endpoint." lightbox="media/storage-files-networking-endpoints-private-portal/private-endpoint-virtual-network.png" border="true"::: |
19 | 31 |
|
20 | | - |
| 32 | +The **DNS** blade contains the information for integrating your private endpoint with a private DNS zone. Make sure the subscription and resource group are correct, then select **Next: Tags**. |
21 | 33 |
|
22 | | -In the **Resource** blade, select the radio button for **Connect to an Azure resource in my directory**. Under **Resource type**, select **Microsoft.Storage/storageAccounts** for the resource type. The **Resource** field is the storage account with the Azure file share you wish to connect to. Target sub-resource is **file**, since this is for Azure Files. |
| 34 | + :::image type="content" source="media/storage-files-networking-endpoints-private-portal/private-endpoint-dns.png" alt-text="Screenshot showing how to integrate your private endpoint with a private DNS zone." lightbox="media/storage-files-networking-endpoints-private-portal/private-endpoint-dns.png" border="true"::: |
23 | 35 |
|
24 | | -The **Configuration** blade allows you to select the specific virtual network and subnet you would like to add your private endpoint to. You must select a distinct subnet from the subnet you added your service endpoint to above. The Configuration blade also contains the information for creating/update the private DNS zone. We recommend using the default `privatelink.file.core.windows.net` zone. |
| 36 | +You can optionally apply tags to categorize your resources, such as applying the name **Environment** and the value **Test** to all testing resources. Enter name/value pairs if desired, and then select **Next: Review + create**. |
25 | 37 |
|
26 | | - |
| 38 | + :::image type="content" source="media/storage-files-networking-endpoints-private-portal/private-endpoint-tags.png" alt-text="Screenshot showing how to optionally tag your private endpoint with name/value pairs for easy categorization." lightbox="media/storage-files-networking-endpoints-private-portal/private-endpoint-tags.png" border="true"::: |
27 | 39 |
|
28 | | -Click **Review + create** to create the private endpoint. |
| 40 | +Click **Review + create** to create the private endpoint. |
0 commit comments