Create or update a Storage Account.
This template deploys a Storage Account including blob containers and files shares. Encryption in transit it enabled using a minimum of TLS 1.2.
| Parameter name | Required | Description |
|---|---|---|
| storageAccountName | Yes | The name of the Storage Account. |
| location | No | The Azure region to deploy to. |
| sku | No | Create the Storage Account as LRS or GRS. |
| suffixLength | No | Determine how many additional characters are added to the storage account name as a suffix. |
| containers | No | An array of storage containers to create on the storage account. |
| lifecycleRules | No | An array of lifecycle management policies for the storage account. |
| blobSoftDeleteDays | No | The number of days to retain deleted blobs. When set to 0, soft delete is disabled. |
| containerSoftDeleteDays | No | The number of days to retain deleted containers. When set to 0, soft delete is disabled. |
| shares | No | An array of file shares to create on the storage account. |
| useLargeFileShares | No | Determines if large file shares are enabled. This can not be disabled once enabled. |
| shareSoftDeleteDays | No | The number of days to retain deleted shares. When set to 0, soft delete is disabled. |
| allowBlobPublicAccess | No | Determines if any containers can be configured with the anonymous access types of blob or container. |
| keyVaultPrincipalId | No | Set to the objectId of Azure Key Vault to delegated permission for use with Key Managed Storage Accounts. |
| tags | Yes | Tags to apply to the resource. |
The name of the Storage Account.
The Azure region to deploy to.
Default value
[resourceGroup().location]
Create the Storage Account as LRS or GRS.
Default value
Standard_LRS
Allowed values
Standard_LRS
Standard_GRS
Determine how many additional characters are added to the storage account name as a suffix.
Default value
0
An array of storage containers to create on the storage account.
An array of lifecycle management policies for the storage account.
The number of days to retain deleted blobs. When set to 0, soft delete is disabled.
Default value
0
The number of days to retain deleted containers. When set to 0, soft delete is disabled.
Default value
0
An array of file shares to create on the storage account.
Determines if large file shares are enabled. This can not be disabled once enabled.
Default value
False
The number of days to retain deleted shares. When set to 0, soft delete is disabled.
Default value
0
Determines if any containers can be configured with the anonymous access types of blob or container.
Default value
False
Set to the objectId of Azure Key Vault to delegated permission for use with Key Managed Storage Accounts.
Tags to apply to the resource.
| Name | Type | Description |
|---|---|---|
| blobEndpoint | string | A URI to the blob storage endpoint. |
| resourceId | string | A unique resource identifier for the Storage Account. |
{
"$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentParameters.json#",
"contentVersion": "1.0.0.0",
"metadata": {
"template": "templates/storage/v1/template.json"
},
"parameters": {
"storageAccountName": {
"value": ""
},
"sku": {
"value": "Standard_LRS"
},
"containers": {
"value": [
{
"name": "logs",
"publicAccess": "None",
"metadata": {}
}
]
},
"lifecycleRules": {
"value": {
"enabled": true,
"name": "<rule_name>",
"type": "Lifecycle",
"definition": {
"actions": {
"baseBlob": {
"delete": {
"daysAfterModificationGreaterThan": 7
}
}
},
"filters": {
"blobTypes": [
"blockBlob"
],
"prefixMatch": [
"logs/"
]
}
}
}
},
"blobSoftDeleteDays": {
"value": 7
},
"containerSoftDeleteDays": {
"value": 7
},
"shares": {
"value": [
{
"name": "<share_name>",
"shareQuota": 5,
"metadata": {}
}
]
},
"shareSoftDeleteDays": {
"value": 7
},
"allowBlobPublicAccess": {
"value": false
},
"tags": {
"value": {
"service": "<service_name>",
"env": "prod"
}
}
}
}