You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: azure-managed-lustre/amlfs-prerequisites.md
+16Lines changed: 16 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -94,6 +94,7 @@ You must create a storage account or use an existing one. The storage account mu
94
94
-**Account type** - A compatible storage account type. To learn more, see [Supported storage account types](#supported-storage-account-types).
95
95
-**Access roles** - Role assignments that permit the Azure Managed Lustre system to modify data. To learn more, see [Required access roles](#access-roles-for-blob-integration).
96
96
-**Access keys** - The storage account must have the storage account key access setting set to **Enabled**.
97
+
-**Subnet access** - The storage account must be accessible from the Azure Managed Lustre subnet. To learn more, see [Enable subnet access](#enable-subnet-access).
97
98
98
99
#### Supported storage account types
99
100
@@ -130,6 +131,21 @@ To add the roles for the service principal **HPC Cache Resource Provider**, foll
130
131
131
132
For detailed steps, see [Assign Azure roles using the Azure portal](/azure/role-based-access-control/role-assignments-portal).
132
133
134
+
#### Enable subnet access
135
+
136
+
Configure network access of the storage account to enable public access from all networks or from the subnet configured with the Azure Managed Lustre system. If you choose to disable public access to the storage account (private endpoints), see [Private endpoints](#private-endpoints-optional).
137
+
138
+
To enable storage account access from the Azure Managed Lustre subnet, follow these steps:
139
+
140
+
1. Navigate your storage account, and expand **Security + Networking** in the left navigation pane.
141
+
1. Select **Networking**.
142
+
1. Under Public network access, click the radio button for either **Enable public access from selected virtual networks and IP Addresses** (recommended) or **Enable public access from all networks**. If you choose **Enable public access from selected virtual networks and IP Addresses**, then continue with the steps below. If you choose **Enable public access from all networks**, then jump to the last step below to **Save**.
143
+
144
+
1. Under Virtual networks, click **Add existing virtual network**.
145
+
1. On the right, select the Virtual networks and Subnets used by Azure Managed Lustre.
146
+
1. Click **Enable**.
147
+
1. In the upper left, click **Save**.
148
+
133
149
### Blob containers
134
150
135
151
You must have two separate blob containers in the same storage account, which are used for the following purposes:
0 commit comments