Firewall Whitelisting for Delivery Controllers to add Azure as a Hosting Connection

Firewall Whitelisting for Delivery Controllers to add Azure as a Hosting Connection

book

Article ID: CTX559135

calendar_today

Updated On:

Description

Requesting a Firewall white-list for Delivery Controller with connecting to Azure Subscription as a hosting connection.

Instructions

IPs/Url that are needed for DDCs so they can communicate with Azure hosting, including the MCS process, or perform power actions.

Please find the list of the URLs that are used by Citrix, and allow the following addresses on the firewall rule:

 

  • Authentication URL: https://login.microsoftonline.com
  • Management URL: https://management.azure.com. This is a request URL for Azure Resource Manager provider APIs. The endpoint for management depends on the environment. For example, for Azure Global, it is https://management.azure.com, and for Azure US Government, it is https://management.usgovcloudapi.net.
  • Storage suffix: https://*.core.windows.net. This (*) is a wildcard character for storage suffix. For example, https://demo.table.core.windows.net.
  • Azure blob storage endpoint to upload or download disks or snapshots: https://*.storage.azure.net. This (*) is a wildcard character for blob storage import and export operations. For example, https://md-impexp-xxxxx.z[00-50].blob.storage.azure.net.
  • Key vault service: https://*.vault.azure.net. This (*) is a wildcard character for the key vault name. For example, https://<your-key-vault-name>.vault.azure.net.
  • Service bus suffix: https://*.servicebus.windows.net. This (*) is a wildcard character for namespaces created in the global Azure cloud. For example, https://{serviceNamespace}.servicebus.windows.net/{path}.

Technical Reference : https://docs.citrix.com/en-us/citrix-daas/install-configure/connections/connection-azure-resource-manager#create-a-connection-using-an-existing-service-principal
Other detailed Azure Portal URL info, please refer to: https://learn.microsoft.com/en-us/azure/azure-portal/azure-portal-safelist-urls?tabs=public-cloud

Environment

Citrix is not responsible for and does not endorse or accept any responsibility for the contents or your use of these third party Web sites. Citrix is providing these links to you only as a convenience, and the inclusion of any link does not imply endorsement by Citrix of the linked Web site. It is your responsibility to take precautions to ensure that whatever Web site you use is free of viruses or other harmful items.

Additional Information

https://learn.microsoft.com/en-us/azure/azure-portal/azure-portal-safelist-urls?tabs=public-cloud
Powered by Wolken Software