Skip to content

Azure Storage Account Creation#

  1. Create Azure Storage Account through the Azure console (https://portal.azure.com).

  2. Note the following details for the Storage account from the Access Keys option in the left navigation:

    1. Storage Account Name

    2. Access keys Key1 and Key2

Setting up Azure Application and Register with Azure Active Directory#

  1. Within Azure Active Directory, create and register a new app under App Registrations.

    1. For supported account types, select ‘Accounts in this organizational directory only (XXXXXXXXX)’

    2. In Redirect URI drop-down, select “Public client”.

    3. Value:urn:ietf:wg:oauth:2.0:oob

    4. Click the Register.

  2. Once the App is registered, click the Certificates & secrets.

  3. Click the New client secret.

  4. Note down the generated value of the client secret as this will not be visible later.

Set IAM Role for this Application under Storage Account#

To navigate to set IAM role, use the following steps:

  1. Go to Storage Accounts in Azure.

  2. Select Account.

  3. Access Control (IAM).

  4. Click on Add and select Role Assignments from dropdown menu.

Add the following role assignments for the application registered with Azure AD.

  1. Role Assignment 1

    1. Select Role as Owner.

    2. Assign Access to as default (no change).

    3. For “Select” use Azure application created above.

  2. Role Assignment 2

    1. Select Role as Storage Blob Data Contributor.

    2. Assign Access to as default (no change).

    3. For “Select” use Azure application created above.


Last update: July 23, 2021