Redigera

Dela via

Approve private endpoint connections

  • Artikel

Azure Database for PostgreSQL - Flexible Server is an Azure Private Link service. This means that you can create private endpoints so that your client applications can connect privately and securely to your Azure Database for PostgreSQL flexible server.

A private endpoint to your Azure Database for PostgreSQL flexible server is a network interface that you can inject in a subnet of an Azure virtual network. Any host or service that can route network traffic to that subnet, are able to communicate with your flexible server so that the network traffic doesn't have to traverse the internet. All traffic is sent privately using Microsoft backbone.

For more information about Azure Private Link and Azure Private Endpoint, see Azure Private Link frequently asked questions.

In many enterprises, networking and database operation duties are clearly separated.

In such organizations, network administrators create the cloud networking infrastructure, such as Azure Private Link services, and database administrator create and manage the database servers, such as Azure Database for PostgreSQL flexible server.

Therefore, network administrators wouldn't have permissions to approve and reject private endpoint connections on Azure Database for PostgreSQL flexible server. Likewise, database administrators wouldn't have permissions to deploy private endpoints, integrate them with private DNS zones, or link the private DNS zones to virtual networks.

In these scenarios, after network administrators create a private endpoint, the database administrators are responsible for approving or rejecting the connections that are created from those private endpoints.

Using the Azure portal:

  1. Select your Azure Database for PostgreSQL flexible server.

  2. In the resource menu, select Overview.

    Screenshot showing the Overview page.

  3. The status of the server must be Available, for the Networking menu option to be enabled.

    Screenshot showing where in the Overview page you can find the status of the server.

  4. If the status of the server isn't Available, the Networking option is disabled.

    Screenshot showing that Networking menu is disabled when status of server isn't Available.

Note

Any attempt to configure the networking settings of a server whose status is other than available, would fail with an error.

  1. In the resource menu, select Networking.

    Screenshot showing the Networking page.

  2. Select the private endpoint connection whose state is Pending, and that you want to approve.

    Screenshot showing how to begin approving an existing private endpoint connection with Pending state.

  3. Select Approve to trigger the approval of the private endpoint connection.

    Screenshot showing the Approve button to trigger the approval of an existing private endpoint connection.

  4. If you consider it necessary, in the Description box of the Approve dialog, type the reason why you're deciding to approve this private endpoint connection.

    Screenshot showing the Approve dialog to provide reason why the request is approved.

  5. A notification informs you that the private endpoint connection is being approved.

    Screenshot showing the notification informing that it's approving the private endpoint connection.

  6. When the operation completes, a notification informs you that the private endpoint connection was successfully approved.

    Screenshot showing the notification informing that private endpoint connection is approved.

Related content