Creating and registering the Azure environment

In Cloudera, you perform a step-by-step procedure to create the environment, and select options for the database, virtual machines, and Cluster Connectivity Manager during registration.

Create a Cloudera Azure environment in the VNET that you created earlier.
Select private environment options for the PostgreSQL database, virtual machines, and Cluster Connectivity Manager (v2) while registering the Azure environment in Cloudera.
On the environment registration screen, the Enable Cluster Connectivity Manager option is enabled by default. It ensures that all traffic from Cloudera Control Plane to your cloud resources travels through a secured HTTPS tunnel. Cloudera Data Warehouse Private AKS only works with Cluster Connectivity Manager (v2).

Do not create public IPs so that Azure VMs have private IP addresses only.
Enable the Create Private Endpoints option.
By default, the PostgreSQL Azure database provisioned for your Data Lake is reachable through a service endpoint (public IP address). To increase security, you must select to have it reachable through a private endpoint instead of a service endpoint. You can create a new private DNS zone for the database or you can use your own. Cloudera Data Warehouse will also use the zone specified here.