Deploying Web Access with an Azure Public IP

  • Published on Dec 12, 2025
  • 1 minute(s) read
  • CD
  • SS
 Prev Next

This guide is intended for IT infrastructure architects and DevOps professionals responsible for deploying or enabling Web Access in the Azure public cloud.

This guide applies to Nasuni Edge Appliance 10.1 and higher.

Introduction

To enable access to Web Access via the public internet, a public IP address and the corresponding network security rule must be configured on the Edge Appliance instance.

Web Access can also be deployed behind an application load balancer (ALB). An ALB can offload encryption/decryption, simplify TLS/SSL certificate management, and integrate with other services to enhance security and performance. For information on setting up an ALB on Azure, see Deploying Web Access with Azure Front Door.

Prerequisites

  • An Edge Appliance must be deployed to Azure and joined to the NMC.

  • A public FQDN for your instance and corresponding SSL/TLS server certificate.

  • Access to DNS to set up the FQDN.

Public IP Setup

The Web Access instance can be assigned a public IP address during creation. To verify if an instance has a public IP address or to configure the IP address, follow these steps:

  1. Log in to Azure https://azure.microsoft.com/.

  2. Navigate to Virtual Machines and select the Edge Appliance instance.

  3. Expand the Networking category and select Network Settings. A public IP address displays in the right-hand panel. If an IP is not configured, follow these steps:

    1. Click the Configure link. The NIC network settings load.

    2. Click ipconfig1 to load the Edit IP configuration window.

    3. Check the Associate public IP address checkbox. A dropdown box appears, populated with a new public IP address. Alternatively, create a new public IP address by clicking Create a public IP address, followed by Save.

    4. Navigate to the Networking category and click Network settings to refresh the page. The new IP address is displayed.

Network Security Group

If a network security group does not exist, follow these steps:

  1. Go to Networking.

  2. In the Network Interface section, click the NIC name.

  3. On the NIC, select Network security group.

  4. Click Create new.

  5. Click Add network security group.

  6. After the network security group is created, click Create port rule.

  7. Configure the following fields:

    1. Source: Use the drop-down to select Any.

    2. Source port ranges: Enter “*“.

    3. Destination: Use the drop-down to select Any.

    4. Service: Use the drop-down to select HTTPS.

    5. Action: Click Allow.

    6. Priority: Enter “100“.

    7. Name: Enter a name.

    8. (Optional) Description: Enter a description.

  8. Click Save.

  9. Navigate to https://IPAddress to confirm that the Web Access sign-in page is displayed.

    Note: Web Access requires at least one share enabled.

Related articles