Configuring file shadowing with Azure Blob Storage

When configuring file shadowing with Azure Blob Storage, you will need to create a storage account and container.

FortiDLP uses storage account keys to authenticate with the Azure Blob Storage service. These keys grant full permissions to all containers within the storage account. To restrict this scope, we recommend creating a dedicated storage account for FortiDLP.

The following instructions describe the tasks required to configure file shadowing with Azure Blob Storage.

This functionality is supported with FortiDLP Agent 10.1.3+. Earlier Agents may successfully upload shadow copies to Azure Blob Storage, however, shadow copies will be unavailable for download from the FortiDLP Console. In this scenario, associated action events will also display with an Expired status.

How to configure file shadowing with Azure Blob Storage

1. Log in to the Microsoft Azure Portal.
2. Create your storage account:
   1. Click Storage accounts.
   2. Click Create.
   3. In the Basics tab, in the Storage account name field, type the account name.
   4. In the Region menu, select the account region. We recommend choosing the region your company is located in.
      
   5. Click Next and configure your account as detailed here.
   6. Click Create.
      
   7. After your account is created, click Go to resource.
      
3. Create a storage container:
   1. In the left-hand panel, click Containers.
   2. Click Container.
   3. In the New container panel, in the Name field, type the container name.
   4. Click Create.
4. Copy an access key:
   1. In the left-hand panel, click Access keys.
   2. For either of the access keys shown, click Show.
   3. Copy the key.

Along with the Access key value, remember the values for the Storage account name and Container, as you will need them to complete the next task, Configuring file shadowing with FortiDLP.