Provide storage for the IT department testing and training

Welcome to Exercise 1 of the Azure Storage Guided Project, designed for the Azure Storage Applied Skills Assessment. This article serves as a valuable resource for individuals preparing for the examination, currently available at no cost. For your convenience, the official project guide is provided here.

It’s essential to note that the storage account designated for the internal team should be configured as a private storage account. The department testing and training as indicated in the exercise is an internal team. By default, all Azure storage accounts are set to private, ensuring secure and controlled access, because of this you do not need to take any other step. Enabling anonymous access on individual containers is unchecked by default and this makes storage accounts in Azure private. Checking it will set the account to public

This determines if an account is public or private

Create a resource group and a storage account.

1. Create and deploy a resource group to hold all your project resources. Learn more about resource groups.

• In the Azure portal, search for and select Resource groups.

• Select + Create

• Give your resource group a name. For example, storagerg01.

• Select a region. Use this region throughout the project.

• Select Review and create to validate the resource group.

• Select Create to deploy the resource group.

2. Create and deploy a storage account to support testing and training. Learn more about the types of storage accounts.

• In the Azure portal, search for and select Storage accounts.

• Select + Create.

• On the Basics tab, select your Resource group.

• Provide a Storage account name. The storage account name must be unique in Azure.

• Set the Performance to Standard.

• Select Review, and then Create.

• Wait for the storage account to deploy and then Go to resource.

• Go to the resource.

Configure simple settings in the storage account.

1. The data in this storage account doesn’t require high availability or durability. A lowest-cost storage solution is desired. Learn more about storage account redundancy.

• In your storage account, in the Data management section, select the Redundancy blade.

• Select Locally-redundant storage (LRS) in the Redundancy drop-down.

• Be sure to Save your changes.

• Refresh the page and notice the content only exists in the primary location.

2. The storage account should only accept requests from secure connections. Learn more about requiring secure transfer from secure connections

• In the Settings section, select the Configuration blade.

• Ensure Secure transfer required is Enabled.

3. Developers would like the storage account to use at least TLS version 1.2. Learn more about transport layer security (TLS).

• In the Settings section, select the Configuration Blade.
• Ensure the Minimal TLS version is set to Version 1.2.

4. Until the storage is needed again, disable requests to the storage account. Learn more about disabling shared keys.

• In the Settings section, select the Configuration blade.
• Ensure Allow storage account key access is Disabled.
• Be sure to Save your changes.

5. Ensure the storage account allows public access from all networks.

• In the Security + networking section, select the Networking blade.
• Ensure Public network access is set to Enabled from all networks.
• Be sure to Save your changes.

Summary

Following all the steps fulfills the requirements for the exercise Exercise — Provide storage for the IT department testing and training. Thank you for reading, see you in exercise number 2.