From ae0753482fbb07798aa4e2f1046a5a2a5ee56089 Mon Sep 17 00:00:00 2001 From: Fi Quick <47183728+fiquick@users.noreply.github.com> Date: Tue, 29 Oct 2024 17:13:26 +0000 Subject: [PATCH 1/5] privatelinkguide --- .../platform/security/secure-connections.adoc | 36 +++++++++++++++++++ 1 file changed, 36 insertions(+) diff --git a/modules/ROOT/pages/platform/security/secure-connections.adoc b/modules/ROOT/pages/platform/security/secure-connections.adoc index a87624c1..198f4094 100644 --- a/modules/ROOT/pages/platform/security/secure-connections.adoc +++ b/modules/ROOT/pages/platform/security/secure-connections.adoc @@ -212,6 +212,42 @@ To enable private endpoints using Azure Private Link: . Select *Network Access* from the sidebar menu of the Console. . Select *New network access configuration* and follow the setup instructions. +*Configure Network Access* + +. Choose your product from the available options. +. Select the appropriate region for your deployment. +. Enter the "Target Azure Subscription ID" where you want to enable PrivateLink. +. Enable PrivateLink by toggling the respective option. + +*Obtain PrivateLink Service Name* + +. After enabling PrivateLink, you will receive a PrivateLink service name. +. Copy this service name and save it for later use. + +*Create PrivateLink Endpoint in Azure ( On your Azure Portal)* + +. Log in to your Azure portal. +. Navigate to your cloud VPC and create a new PrivateLink endpoint. +. Use the PrivateLink service name obtained in the previous step for the configuration. + +*Accept Endpoint in Aura Console* + +. Return to the Aura Virtual Dedicated Cloud Console. +. Check for the newly created PrivateLink endpoint. +. Accept the endpoint to complete the connection process. + +*Disable Public Traffic* + +. Before disabling public traffic, test all your application connectivity with PrivateLink to ensure everything is functioning correctly. +. Once verified, you can disable public traffic by toggling off the public access option. +. Note: You can always disable public traffic later if needed. + +*Monitor PrivateLink Status* + +. You can monitor the status of your PrivateLink configuration on the Aura Virtual Dedicated Cloud Console. +Ensure that all services are running as expected and troubleshoot any issues if necessary. + + Please see the link:https://learn.microsoft.com/en-us/azure/private-link/rbac-permissions#private-endpoint[Azure Documentation] for required roles and permissions. == Private links From da0c0c39a3d705d39637cc8af1aefd9bb139fd9f Mon Sep 17 00:00:00 2001 From: Fi Quick <47183728+fiquick@users.noreply.github.com> Date: Thu, 31 Oct 2024 19:05:30 +0200 Subject: [PATCH 2/5] Update secure-connections.adoc --- modules/ROOT/pages/platform/security/secure-connections.adoc | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/modules/ROOT/pages/platform/security/secure-connections.adoc b/modules/ROOT/pages/platform/security/secure-connections.adoc index 198f4094..01e4b4df 100644 --- a/modules/ROOT/pages/platform/security/secure-connections.adoc +++ b/modules/ROOT/pages/platform/security/secure-connections.adoc @@ -245,8 +245,7 @@ To enable private endpoints using Azure Private Link: *Monitor PrivateLink Status* . You can monitor the status of your PrivateLink configuration on the Aura Virtual Dedicated Cloud Console. -Ensure that all services are running as expected and troubleshoot any issues if necessary. - +. Ensure that all services are running as expected and troubleshoot any issues if necessary. Please see the link:https://learn.microsoft.com/en-us/azure/private-link/rbac-permissions#private-endpoint[Azure Documentation] for required roles and permissions. From f23ac27fa6e2c455a4b4c89fc27b2d91072aed9a Mon Sep 17 00:00:00 2001 From: Fi Quick <47183728+fiquick@users.noreply.github.com> Date: Mon, 4 Nov 2024 18:30:05 +0200 Subject: [PATCH 3/5] Update secure-connections.adoc --- modules/ROOT/pages/platform/security/secure-connections.adoc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/modules/ROOT/pages/platform/security/secure-connections.adoc b/modules/ROOT/pages/platform/security/secure-connections.adoc index 01e4b4df..3810479d 100644 --- a/modules/ROOT/pages/platform/security/secure-connections.adoc +++ b/modules/ROOT/pages/platform/security/secure-connections.adoc @@ -224,7 +224,7 @@ To enable private endpoints using Azure Private Link: . After enabling PrivateLink, you will receive a PrivateLink service name. . Copy this service name and save it for later use. -*Create PrivateLink Endpoint in Azure ( On your Azure Portal)* +*Create PrivateLink Endpoint in Azure (on your Azure Portal)* . Log in to your Azure portal. . Navigate to your cloud VPC and create a new PrivateLink endpoint. From 9ed2c300fc0399595c1d346242dce1be18df43f6 Mon Sep 17 00:00:00 2001 From: Fi Quick <47183728+fiquick@users.noreply.github.com> Date: Mon, 4 Nov 2024 18:30:42 +0200 Subject: [PATCH 4/5] Update secure-connections.adoc --- modules/ROOT/pages/platform/security/secure-connections.adoc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/modules/ROOT/pages/platform/security/secure-connections.adoc b/modules/ROOT/pages/platform/security/secure-connections.adoc index 3810479d..7655dc5a 100644 --- a/modules/ROOT/pages/platform/security/secure-connections.adoc +++ b/modules/ROOT/pages/platform/security/secure-connections.adoc @@ -224,7 +224,7 @@ To enable private endpoints using Azure Private Link: . After enabling PrivateLink, you will receive a PrivateLink service name. . Copy this service name and save it for later use. -*Create PrivateLink Endpoint in Azure (on your Azure Portal)* +*Create PrivateLink Endpoint in the Azure portal* . Log in to your Azure portal. . Navigate to your cloud VPC and create a new PrivateLink endpoint. From 4dd0c9692d42797525e31490aeab1f48e431fea3 Mon Sep 17 00:00:00 2001 From: Fi Quick <47183728+fiquick@users.noreply.github.com> Date: Mon, 4 Nov 2024 18:32:57 +0200 Subject: [PATCH 5/5] Update secure-connections.adoc --- modules/ROOT/pages/platform/security/secure-connections.adoc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/modules/ROOT/pages/platform/security/secure-connections.adoc b/modules/ROOT/pages/platform/security/secure-connections.adoc index 7655dc5a..94e2f8d2 100644 --- a/modules/ROOT/pages/platform/security/secure-connections.adoc +++ b/modules/ROOT/pages/platform/security/secure-connections.adoc @@ -205,7 +205,7 @@ It will be different from the *Connection URI* you used before. image::azure_privatelink_03_browser_bloom_over_vpn.png["Accessing Browser and Bloom over a VPN", title="Accessing Browser and Bloom over a VPN"] -==== Enabling private endpoints +==== Enabling Azure private endpoints step-by-step To enable private endpoints using Azure Private Link: