search

MicrosoftDocs / azure-docs

Open source documentation of Microsoft Azure
https://docs.microsoft.com/azure
Creative Commons Attribution 4.0 International
10.29k stars 21.47k forks source link

Grant Azure Stream Analytics access to Azure sql db without public network access #116093

Closed Hamid-R closed 1 year ago

Hamid-R commented 1 year ago

[Enter feedback here]

Is it possible to have input/output sql database in ASA without setting public network access in sql db side ? in this document it seems enable public network access is a requirements and not sure how it will work for the organization with higher security measures in place ( deny public network access)

Document Details

Do not edit this section. It is required for learn.microsoft.com ➟ GitHub issue linking.

Naveenommi-MSFT commented 1 year ago

@Hamid-R Thanks for your feedback! We will investigate and update as appropriate.

AjayBathini-MSFT commented 1 year ago

@Hamid-R Thank you for your question. In the document you referenced, it is mentioned that enabling public network access for the SQL Database is a requirement for using SQL Database as an output for Azure Stream Analytics. However, it is possible to use Private Endpoints to connect to Azure SQL Database without allowing public network access.

Private Endpoints allow you to securely access Azure SQL Database over a private endpoint within your virtual network. This means that you can access the SQL Database without allowing public network access. To use Private Endpoints with Azure Stream Analytics, you will need to create a Private Endpoint for the SQL Database and then configure the ASA job to use the Private Endpoint.

For more information on using Private Endpoints with Azure SQL Database, please see the following documentation:

Azure SQL Database Private Endpoint Connect to Azure SQL Database over Private Endpoint I hope this helps! Let me know if you have any further questions.

Hamid-R commented 1 year ago

The issue is solved by Microsoft suggestion after we submitted a ticket. We can not use PE or VNet in Straem Analytics job and we need to create Stream Analytics Cluster first and then use it to run our Stream Analytics job. ( https://learn.microsoft.com/en-us/azure/stream-analytics/cluster-overview#how-do-i-choose-between-a-stream-analytics-cluster-and-a-stream-analytics-job).