> Essential > Applications > Cloud Apps > Azure Data Lake Storage Gen2 > Getting Started > Add the Object Storage Repository

Add the Azure Data Lake Storage Gen2 Object Storage Repository with IAM VM Role Assignment

To add the Azure Data Lake Gen2 object storage repository with IAM (Identity and Access Management) VM role assignment, you first assign the storage blob data owner role to the Azure VM that you want to use as an access node for the storage account, and then, using the IAM VM role assignment type of authentication, add the object storage repository that contains that VM.

Assign the Storage Blob Data Owner Role to the VM

  1. In the Azure portal, using the Azure subscription that is going to be associate to the VM, create or select a Windows or UNIX VM.

  2. Turn the system assigned identity on.

  3. In the Azure Data Lake Gen2 Storage account, add the storage blob data owner role to the VM to which you want to assign the role.

Add the Repository with IAM VM Role Assignment

  1. From the navigation pane, go to Protect > Object storage.

    The Object storage page appears.

  2. In the upper-right area of the page, click Add object storage.

    The Add object storage dialog box appears.

  3. Click Azure Data Lake Storage Gen2.

    The Configure Azure Data Lake Storage Gen2 wizard appears.

  4. On the Plan tab of the wizard, select the backup plan that you want to use for the object storage repository, and then click Next.

  5. On the Access Node tab of the wizard, select one or more Azure VMs or the server group of Azure VMs where the Cloud Apps package is installed, and then click Next.

    Note

    • The access nodes must be of similar operating system type.

    • All servers in the server group must be reachable through network routes.

  6. On the Add object storage tab of the wizard, complete the following steps:

    1. In theObject storage name box, enter a name for the repository.

    2. In the Host URL box, Enter the Azure Data Lake Storage Gen2 service account URL.

      For example, enter dfs.core.windows.net.

    3. From the Authentication list, select IAM VM role.

    4. In theAccount name name box, enter the name of the Azure Data Lake Storage Gen2 account.

  7. On the Backup Content tab of the wizard, complete the following steps:

    1. Click Add, and do one of the following:

      • To enter a custom path, click Custom path, and then enter the path for the content.

      • To browse for content, click Browse, and then select the content.

    2. To exclude some of the content you selected, move the Specify exclusion toggle key to the right, and then add the exclusion.

    3. Click Next.

  8. On the Summary tab of the wizard, review the options, and then clickFinish.

For information about how to assign roles to VMs, search for "Configure managed identities for Azure resources on a VM using the Azure portal" in the Microsoft documentation.

Loading...