Add An Azure Blob Storage

In order to integrate Azure Blob with MetaDefender Storage Security you will be required to create an application registration, assign the necessary permissions and roles, and then generate a secret key. Please follow these steps:

  1. From the left-side menu, navigate to Storage Units and from the Object Storage tab, choose Add Azure Blob Storage
  1. Give your storage a name so you can easily identify it later.
  2. Select Government Cloud type if the storage belongs to Azure US Government Cloud.
  3. Enter the Storage Account name.
  4. Enter your Tenant ID. Scroll to the end of this page for more details.
  5. Enter your Client ID. Scroll to the end of this page for more details.
  6. Enter your Client Secret. Scroll to the end of this page for more details.
  7. Enter the name of a container to process objects from a particular container.
  8. Select Add in order to finish the process.

How to create an Azure Blob application?

In order to process your Azure Blob objects with MetaDefender Storage Security you will be required to add a new app registration in your Active Directory Azure Portal.

  1. Log in to Azure Portal and from the left navigation menu choose Azure Active Directory
  1. Make a copy of the Tenant ID from the overview page
  1. From the left side menu, choose App registrations
  2. Click New registration
  3. Give your app a name so you can easily identify it
  1. There is no need to modify the other properties. When ready, please click Register
  2. From the Overview page of your newly created application, make a copy of Application (client) ID
  1. You now need to specify which permissions should the application have. To do this, please navigate to API permissions from the left-side menu
  2. Click Add a permission
  1. Select Azure Storage from the right-side menu
  1. Select Delegated permissions
  1. In order for MetaDefender Storage Security to correctly work, please add the following permission: user_impersonation
  2. When ready, click Add permissions
  3. Now that the required permissions are in place, please navigate to Certificates & Secrets from the left-side menu
  4. Click New client secret and make sure that it never expires
  1. Click Add and then you will need to make a copy of the generated secret key because it will not be available later
  2. Navigate to your Storage Account and select the Access Control (IAM) menu
  3. Select the Role assignments tab, then select the Add role assignment option from the Add dropdown.

  1. Assign the following roles to the client application you previously registered:

    1. Storage Blob Data Contributor
    2. Reader

  2. Now that you have the Tenant ID, Client ID and the Client Secret Key, you can go back in MetaDefender Storage Security and finish the Azure Blob integration. Congratulations!

For additional configuration of how MetaDefender Storage Security handles blobs please check custom configuration.

Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard
Next to read:
Add An Alibaba Cloud Storage
On This Page
Add An Azure Blob StorageHow to create an Azure Blob application?