How to Connect Azure Data Factory to a Peer Network on a different VNET

Question

I'm trying to create Peer Virtual Network between my Azure Data Factory on one VNET with resources on another VNET, (specifically SQLDBs). I'm trying to follow the guide

Here

https://learn.microsoft.com/en-us/azure/data-factory/managed-virtual-network-private-endpoint

and

https://learn.microsoft.com/en-us/azure/databricks/administration-guide/cloud-configurations/azure/vnet-peering

But I'm not having much luck.

Can someone let me know if its actually possible?

Answer 1

Just to add a very simple and elegant solution is this: Imagine an azure SQL server that is DISABLED for public access and accessible from certain VNETs (and at this stage not from the ADF). And now you want to create a linked service in Data Factory that connects to this private SQL server. (Remember that Factories do not sit on VNETs, only Self-hosted IR's can sit on VNETs or be disabled for public access.)

Simply create an Integration Runtime on the Data Factory with Virtual Network enabled (see the Virtual Network tab as you start making your Azure hosted Integration Runtime). The VNET that is created when you do this is particular to the Factory, and is auto generated and maintained by the Factory.

Then create a Manage private endpoint in your Factory, selecting your SQL server as the target.

Go to your SQL server, go to the Networking tab, click on Private access tab. Then approve the incoming request that would be generated from the Factory.

Once this is approved and you have added the Factory's System Assigned Identity as a USER on the SQL server database then you will be able to connect from the ADF to the SQL server database

Answer 2

For your requirement, you can integrate both the ADF and the Azure SQL with the VNet using the private endpoint, peer the two VNet, then you can access the Azure SQL from the ADF from the VNet. And you also need to add the private IP address of the ADF in the whitelist of the Azure SQL to allow the ADF to access.