You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/stream-analytics/data-protection.md
+8-4Lines changed: 8 additions & 4 deletions
Original file line number
Diff line number
Diff line change
@@ -5,7 +5,7 @@ author: mamccrea
5
5
ms.author: mamccrea
6
6
ms.service: stream-analytics
7
7
ms.topic: how-to
8
-
ms.date: 11/30/2020
8
+
ms.date: 12/03/2020
9
9
---
10
10
11
11
# Data protection in Azure Stream Analytics
@@ -50,8 +50,6 @@ Encrypt your storage account to secure all of your data and explicitly choose th
50
50
51
51
To help you meet your compliance obligations in any regulated industry or environment, you can read more about [Microsoft's compliance offerings](https://gallery.technet.microsoft.com/Overview-of-Azure-c1be3942).
52
52
53
-
54
-
55
53
Use the following steps to configure your storage account for private data assets. This configuration is made from your Stream Analytics job, not from your storage account.
56
54
57
55
1. Sign in to the [Azure portal](https://portal.azure.com/).
@@ -64,10 +62,16 @@ Use the following steps to configure your storage account for private data asset
64
62
65
63
1. Select the check box that says *Secure all private data assets needed by this job in my Storage account*.
66
64
67
-
1. Select a storage account from your subscription. Note that this setting cannot be modified throughout the life cycle of the job.
65
+
1. Select a storage account from your subscription. Note that this setting cannot be modified throughout the life cycle of the job. You also cannot add this option once the job is created.
66
+
67
+
1. To authenticate with a connection string, select **Connection string** from the Authentication mode dropdown. The storage account key is automatically populated from your subscription.
68
68
69
69
70
70
71
+
1. To authenticate with Managed Identity, select **Managed Identity** from the Authentication mode dropdown. If you choose Managed Identity, you need to add your Stream Analytics job to the storage account's access control list. If you do not give your job access, the job will not be able to perform any operations. For more information on how to grant access, see [Use Azure RBAC to assign a managed identity access to another resource](../active-directory/managed-identities-azure-resources/howto-assign-access-portal.md#use-azure-rbac-to-assign-a-managed-identity-access-to-another-resource).
72
+
73
+
:::image type="content" source="media/data-protection/storage-account-create-msi.png" alt-text="Private data storage account settings with managed identity authentication":::
74
+
71
75
## Private data assets that are stored by Stream Analytics
72
76
73
77
Any private data that is required to be persisted by Stream Analytics is stored in your storage account. Examples of private data assets include:
0 commit comments