When managing access in a Storage Account in Microsoft Azure, the Azure Portal has a management interface that allows the cloud administrator to add and remove virtual networks easily.
But when scripting to validate to ensure consistency, PowerShell is the tool for the job. The cmdlet to retrieve the list of virtual network rules in a Storage Account is Get-AzStorageAccountNetworkRuleSet. However, it is recommended to store the output of the cmdlet in a variable. In this example, we are using $tmpSTGRules.
We can list the entire content, including action, VirtualnetworkResourceId, and State using $tmpSTGRules.VirtualNetworkRules, as depicted in the image below.
If we want to check if a specific subnet is configured within the existent Virtual Network Rules, we can use the following cmdlets and provide the resource id of the subnet. The output will be True if it is there or False in case the entry does not exist.
$tmpStgRules.VirtualNetworkRules.VirtualNetworkResourceId.Contains("/subscriptions/<subscriptionID>/resourceGroups/<ResourceGroupName>/providers/Microsoft.Network/virtualNetworks/<VirtualNetworkName>/subnets/<SubnetName>")
More PowerShell Basics articles
- Updating and extending PowerShell object’s type data
- Using Group Policy settings to enforce PowerShell execution policies
- Customize PowerShell with default parameters and save time
- Handling errors with PowerShell try-catch command
- Ensuring DHCP servers have conflict detection enabled with PowerShell
Read Next
