Articles in this section

See more

Enable Azure PrivateLink for Aura Enterprise Instances

Frank Yao
  • Updated
Follow

Azure Private Link is a service provided by Microsoft Azure that allows you to securely access Azure resources over a private network connection. It enables you to connect to these resources privately and securely, without the need for public internet exposure.


In our case, you can use PrivateLink to connect to your Aura Enterprise instances running on the Azure environment.

Below, you will find a concise set of instructions outlining the process of creating PrivateLink connections and establishing connectivity with your Aura enterprise instances.

 

  1. Raise an Aura support ticket requesting to enable PrivateLink for your Aura instances. 
    Note: PrivateLink will be enabled for all of your Aura instances in the same region.
  2. Aura Support Team will provide you with a PrivateLink Service name. 
  3. From your Azure portal, goto -> ->
  4. Basics of Create a private endpoint.
    select/create Subscription, Resource group, Name
    Note: Make sure you select the same region as your Aura enterprise environment.
  5. Resource of Create a private endpoint.
    select Connect to an Azure resource by resource ID or alias
    Note: Resource ID or alias is the service ID you received from the Aura Support Team.
  6. Virtual Network of Create a private endpoint.
    Select the Virtual Network where your PrivateLink endpoint will be created.
    select the Subnet of your PrivateLink endpoint.
    Select the Dynamic or Static IP address of your PrivateLink endpoint.
    Select/Create your application Security Group. 
    Note: Make sure port 443 and 7687 is enabled in your Security Group.
  7. Create the PrivateLink endpoint
  8. Update your Aura Support ticket with the name of the PrivateLink endpoint you just created.
  9. After your endpoint gets accepted by the Aura platform, the endpoint Connection State turns to Approved.
     
  10. Create a PrivateDNS Zone from your Azure Portal
    The name of the PrivateDNS zone will have the format: production-orch-<orch-id>.neo4j.io
  11. Create a Wildcard Record set pointing to the IP address of your PrivateLink endpoint.



  12. Link the PrivateDNS to your Virtual Network.
  13. Now you can create a testing VM or docker to verify your network connectivity to your Aura instances via PrivateLink.
    please refer to this KB article of How To Test Connectivity Through The Private Endpoint.

Related articles

Comments

0 comments

Please sign in to leave a comment.