To set up audit archiving, you must first designate a storage account and container for
audit archiving in the Azure portal. While you can use an existing storage account, Cloudera
recommends that you create a dedicated storage account for audit archiving, especially if you
are archiving any sensitive data.
When creating a new storage account, you’ll need to know the
following pieces of information for creating a new Service Principal in Azure later on:
- Resource group name
- Storage account name
Although it is not required, it can be helpful to create a new resource group when you
create a new storage account, so that future management becomes easier. You can create a new
resource group in an Azure shell in the Azure Portal by running the following
command:az group create --location <location> --name <resource-group-name>
-
In Azure, create a storage account.
You should be able to accept the defaults for all settings other than the name. As
shown below, once filled in, click the Review + create
button.
-
Review your changes in the next screen. If everything looks correct, click the
Create button.
Alternatively, you can create a storage account using the Azure shell by running the
following command:
az storage account create --name <storage-account-name> --kind <kind> --location <location> --resource-group <resource-group-name>