In today’s digital world, it's important to control who can access storage systems to keep data safe, meet regulations, and run operations smoothly. In cloud storage, setting clear rules on who can see, change, or delete files helps protect information and prevent misuse. With the right access controls, businesses can reduce risks, work more efficiently, and follow security guidelines.
This article looks at simple ways to manage storage access.
Here are the steps to follow:
Create a storage container. Steps:
1.Login to Microsoft Azure at https://portal.azure.com
2.In the Azure portal, search and select storage accounts.
3.Select the storage account you created in the Prepare exercise (guidedprojectprep01sa). Note: it should be associated with the resource group guided-project-rg.
4.On the Data storage account menu, select Containers. Select + Add container.
5.Give the container a name storage-container. Select Create.
Uploading a file to the storage container:
6.Select the storage container you just created.
7.Select Upload and upload a file to it. Once the file is ready for upload, select Upload.
Changing the access tier:
8.Select the file you just uploaded.
9.Select Change tier.
10.Select Cold. Select** Save**.
Create a file share. steps:
1.In the Azure portal, search and select storage accounts.
2.Select the storage account you created in the Prepare exercise (guidedprojectprep01sa). Note: it should be associated with the resource group guided-project-rg.
3.On the storage account, under the Data storage section, select File shares. Select + File share.
4.On the Basics tab, in the name field enter file-share.
5.On the Backup tab, uncheck Enable backup. Select Review + create.
6.Select Create.
7.Select Upload and upload a file to it. Once the file is ready for upload, select Upload.
Create a shared access signature token. Steps:
1.In the Azure portal, search and select storage accounts.
2.Select the storage account you created in the Prepare exercise (guidedprojectprep01sa).
3.On the storage account, select Storage browser. Expand Blob containers. Select the storage container you created earlier, storage-container.
4.Select the ellipses (three dots) on the end of the line for the image you uploaded. Select Generate SAS.
5.Set Signing method to Account key. Set Signing key to Key 1. Set Stored access policy to None. Set Permissions to Read. Enter a custom start and expiry time or leave the defaults.
6.Set Allowed protocols to HTTPS only. Select Generate SAS token and URI. Copy the Blob SAS URL and paste it in another window or tab of your browser.
7.It should display the image you uploaded.
Rotate access keys. Steps:
1.In the Azure portal, search and select storage accounts.
2.Select the storage account you created in the Prepare exercise (guidedprojectprep01sa).
3.On the storage account, under the security + networking section, select Access keys. For Key 1, select Rotate key.
4.Read and then acknowledge the warning about regenerating the access key by selecting Yes.
5.Once you see the success message for rotating the access key, go back to the window or tab you used to check the SAS token and refresh the page. You should receive an authentication failed error.
Top comments (1)
Welldone