Hi community,
I have set up Export to Data Lake for our D365 F&O instance.
However, I have some concerns about the security of the resources.
To get the Export to Data Lake add-in installed, I had to allow public network access to both the Azure storage account and the key vault.
I am not sure how to increase the network security without impacting the D365 and Data Lake connection. Does anyone have any guidance on how to set this up using virtual networks / selected IP addresses / private endpoints?
Thanks
We are not using Azure Data Lake yet but for similar queries where we could not find much info, we have logged support tickets from Azure Portal to Microsoft for clarification. I would suggest you to do the same.
Thanks Mohit, I understand that and that's what I want to do, however I'm not sure what vnet or IP address to enable. As far as I understand, it's the "Microsoft Dynamics ERP Microservices" application that runs the Export to Data Lake feature. How can I restrict access to the storage account and key vault only for this application? There is not a lot of documentation on this microservice.
Hi, To enhance security, I think You can restrict public access to Azure Data Lake by enabling Allow access from your selected Vnets instead of all networks.
Also, you have to do Impact Analysis on how your customer or Implementation partners will access it after enabling it. (We are doing same for moving Azure resources to private endpoints)
check this out
André Arnaud de Cal...
292,160
Super User 2025 Season 1
Martin Dráb
230,962
Most Valuable Professional
nmaenpaa
101,156