The Importance of Private Storage in Organizations
Providing private storage for internal company documents in an organization is critical for security, compliance, and business continuity. Here’s why it matters:
1️⃣ Protection of Sensitive Information
2️⃣ Data Security
3️⃣ Access Control
4️⃣ Regulatory Compliance
5️⃣ Data Integrity
6️⃣ Business Continuity
7️⃣ Protecting Company Reputation
PROCEDURE
Create a Storage Account with High Availability
Objective:
Provision secure storage for internal company documents with geo-redundant replication to protect against regional outages.
Steps:
1.In the Azure portal, go to Storage accounts
2.select + Create.
3.Select an existing Resource group.
4.Set the storage account name to private (must be globally unique).
5.Select Review + Create, then Create.
6.After deployment, select Go to resource.
Configure Redundancy:
1.In the storage account, go to Data management → Redundancy.
2.Select Geo-redundant storage (GRS).
3.Review the primary and secondary region information.
4.Click Save.
2.Create a Private Container and Restrict Access
Objective:
Ensure corporate files are not publicly accessible.
Steps:
1.Go to Data storage → Containers.
2.Select + Container.
3.Name the container private and click create.
4.Set Public access level to Private (no anonymous access).
5.Select OK
Testing Access Restriction:
1.Select container created.
- Click upload to upload a test file to the container.
- Select browse for file to select which file to upload and click upload
4.Select the file and copy the URL from the Overview tab.
5.Paste the URL into a browser.
6.Confirm access is denied (authentication required).
3.Configure a Shared Access Signature (SAS)
Objective:
Provide temporary, restricted access to an external partner for 24 hours.
Steps:
1.Select the uploaded blob.
2.Navigate to the Generate SAS tab.
3.Under Permissions, select Read only.
4.Set the Start time to now and Expiry time to 24 hours.
5.Select Generate SAS token and URL.
6.Copy the Blob SAS URL.
Testing SAS Access:
1.Paste the SAS URL into a browser.
2.Confirm the file opens successfully.
3.Verify that access will expire after the specified time.
4.Implement Lifecycle Management (Move to Cool Tier)
Objective:
Reduce storage costs by automatically moving older blobs from the Hot tier to the Cool tier after 30 days.
Steps:
1.Return to the storage account.
2.Go to Data management → Lifecycle management.
3.Select Add rule.
4.Name the rule movetocool.
5.Apply the rule to All blobs in the storage account.
Under conditions:
•Select Last modified
•Set to More than 30 days ago
Under actions:
•Select Move to cool storage
6.Click Add to save the rule.
5.Configure Object Replication (Backup Public Website)
Objective:
Back up public website content to the private storage account for redundancy and protection.
Steps:
1a.In the private storage account, create a new container by clicking Add container
1b.Give it a name,example “backup” and select create.
2.Navigate to the publicwebsite storage account earlier or any other storage account already created that requires backup .
3.Go to Data management → Object replication.
4.Select Create replication rule and Configure:
•Source container: public
•Destination storage account: private
•Destination container: backup
5.Select Create to create the replication rule.
Testing Replication:
1.Upload a file to the public container.
2.Wait a few minutes.
3.Refresh the backup container in the private storage account.
4.Confirm the file appears automatically.
Key Outcomes
• ✅ Geo-redundant storage ensures high availability during regional outages.
• ✅ Private containers prevent anonymous access to sensitive documents.
• ✅ SAS provides secure, time-bound delegated access.
• ✅ Lifecycle management optimizes storage costs automatically.
• ✅ Object replication provides asynchronous backup between storage accounts.
Top comments (0)