Edit

Create a private endpoint for Azure Data Manager for Agriculture

  • Article

Azure Private Link provides private connectivity from a virtual network to Azure platform as a service (PaaS). It simplifies the network architecture and secures the connection between endpoints in Azure by eliminating data exposure to the public internet.

By using Azure Private Link, you can connect to an Azure Data Manager for Agriculture service from your virtual network via a private endpoint, which is a set of private IP addresses in a subnet within the virtual network. You can then limit access to your Azure Data Manager for Agriculture Preview instance over these private IP addresses.

This article describes how to create a private endpoint and approval process for Azure Data Manager for Agriculture Preview.

Prerequisites

Create a virtual network in the same subscription as the Azure Data Manager for Agriculture Preview instance. This virtual network will allow automatic approval of the Private Link endpoint.

How to set up a private endpoint

Private Endpoints can be created using the Azure portal, PowerShell, or the Azure CLI:

Approval process for a private endpoint

Once the network admin creates the private endpoint, the Data Manager for Agriculture admin can manage the private endpoint connection to Data Manager for Agriculture resource.

  1. Navigate to the Data Manager for Agriculture resource in Azure portal. Select the Networking tab in the left pane, this will show a list of all Private Endpoint Connections and Corresponding Private Endpoint created. Screenshot showing list of private endpoint connections in Azure portal.

  2. Select an individual private endpoint connection from the list. Screenshot showing how to select a private endpoint.

  3. The Data Manager for Agriculture administrator can choose to approve or reject a private endpoint connection and can optionally add a short text response also. Screenshot showing how to approve a private endpoint connection.

  4. After approval or rejection, the list will reflect the appropriate state along with the response text. Screenshot showing private endpoint connection status.

  5. Finally click on the private endpoint name to see the network interface details and IP address of your private endpoint. Screenshot showing where to click to get network interface details. Screenshot showing private endpoint connection status. Screenshot showing private endpoint IP address.

Disable public access to your Data Manager for Agriculture resource

If you want to disable all public access to your Data Manager for Agriculture resource and allow connections only from your virtual network then you need to ensure that your private endpoint connections are enabled and configured. To disable public access to your Data Manager for Agriculture resource:

  1. Go to the Networking page of your Data Manager for Agriculture resource.
  2. Select the Deny public network access checkbox.

Next steps

  • See the Hierarchy Model and learn how to create and organize your agriculture data here.
  • Understand our APIs here.