Can network security groups (NSG) with service tags be used to prevent access to one Azure Storage account and allow access to another Azure Storage Account?

Experience Level: Junior
Tags: Azure CloudAzure StorageAzure Virtual Networks

Answer

Service tags represent IP ranges of Azure Storage. As Azure Storage is PaaS service, there can be multiple Azure Storage accounts behind the IP range. For that reason, NSG with service tags cannot be used to allow access to some storage accounts while preventing access to other storage accounts.

Service endpoints and Azure Storage firewall can be used to achieve this.

Related Azure Cloud job interview questions

Comments

No Comments Yet.
Be the first to tell us what you think.
Azure Storage
Azure Storage

Are you learning Azure Cloud ? Try our test we designed to help you progress faster.

Test yourself
Azure Virtual Networks
Azure Virtual Networks

Are you learning Azure Cloud ? Try our test we designed to help you progress faster.

Test yourself
AZ-700 Designing and Implementing Microsoft Azure Networking Solutions preparation
AZ-700 Designing and Implementing Microsoft Azure Networking Solutions preparation

Are you learning Azure Cloud ? Try our test we designed to help you progress faster.

Test yourself