> Expert > Backup and Restore Agents > Cloud Apps > Azure Data Lake Storage Gen2 > Getting Started > Add a Virtual Client

Add the Azure Data Lake Storage Gen2 Virtual Client with IAM VM Role Assignment

To add the Azure Data Lake Gen2 virtual client with IAM (Identity and Access Management) VM role assignment, you first assign the storage blob data owner role to the Azure VM that you want to use as an access node for the storage account, and then, using the IAM VM role assignment type of authentication, add the object storage repository that contains that VM.

Assign the Storage Blob Data Owner Role to the VM

  1. In the Azure portal, using the Azure subscription that is going to be associated to the VM, create or select a Windows or UNIX VM.

  2. Turn the system assigned identity on.

  3. In the Azure Data Lake Gen2 Storage account, add the storage blob data owner role to the VM to which you want to assign the role.

Add the Virtual Client with IAM VM Role Assignment

  1. From the CommCell Browser, right-click Client Computers, and then click New Client > Cloud Storage > Azure Data Lake Storage Gen2.

    The New Azure Data Lake Client dialog box appears.

  2. On the General tab, provide the following details:

    1. In the Client Name box, type a name for the new client.

    2. In the Instance Name box, type a name for the instance.

    3. In the Access Node box, select one or more Azure VMs or the client group of Azure VMs where the Cloud Apps package is installed.

      Note

      • The proxy client computers must be of similar operating system type.

      • All clients in the client group must be reachable through network routes.

    4. In the Storage Policy box, select a storage policy for the backup and restore operations.

    5. In the Number of Data Backup Streams box, type the number of data streams to use for backups. The maximum value is 99.

      Note

      The number of streams must not exceed the maximum number configured in the subclient storage policy. The CommServe allocates streams depending on the availability of resources.

  3. On the Connection Details tab, enter the following details:

    1. In the Host URL box, enter the Azure Data Lake Storage Gen2 service account URL.

      For example, enter dfs.core.windows.net.

    2. From the Authentication Type list, select IAM VM role assignment.

    3. In the Account Name box, enter the name of the Azure Data Lake Storage Gen2 account.

  4. Click OK.

For information about how to assign roles to VMs, search for "Configure managed identities for Azure resources on a VM using the Azure portal" in the Microsoft documentation.

Loading...