Implementing Azure Private Link and Azure Private Endpoints

This course will focus on how to create and configure Azure Private Link services combined with private endpoints within your virtual network. Once an understanding of both services has been established, the course will dive deeper into the implementation of each by spending time on controlling access to each service and then discussing integration with DNS services. Lastly, the course will take the discussion to on-premises environments and discuss how to make private endpoints and Private Links available through Azure VPN connections to your own internal networks.

Learning Objectives

  • Create a Private Link service
  • Create and plan private endpoints
  • Configure access to private endpoints
  • Integrate Private Link with DNS
  • Integrate Private Link service with on-premises clients

Intended Audience

  • Azure network engineers who will be recommending networking solutions and managing them for performance, resiliency, scale, and security
  • Azure network engineers who will be working with solution architects, cloud administrators, security engineers, and application developers to deliver Azure solutions


  • Experience with Azure virtual networks, Azure VPN connections, and DNS

Hi there, welcome to designing and implementing Private Link Service and Azure Private Endpoints here at Cloud Academy. My name is Brian Harrison, and I'll be delivering this content to you. Let's first start with a quick introduction as to what it is that you're going to be getting from the course as well as an introduction into who I am. As I said, my name is Brian Harrison and I'm a public cloud solution architect, I've been working in the cloud field for more than a decade now, working primarily with Microsoft and Amazon. Here are a couple of links should you want to get in contact with me, one for LinkedIn and one for Twitter, and then there's also an email here that you can use to contact Cloud Academy directly should you have any questions, concerns, or just want to provide some feedback related to this course or others. 

Now, exactly who should be attending this course? There are two different types of Azure Network Engineers that should be looking at this course is something that will help them from an education perspective. The first are those that are going to be working with solution architects, cloud administrators, security engineers and application developers to help deliver Azure solutions. Those are the ones who are going to be helping to define and design networking solutions across their Azure implementation. Then the other is a set of Azure Network Engineers that are going to be recommending, planning, implementing, and maintaining the Azure network solutions, those are going to be your operational network engineers. Both of them are going to need to have a true understanding of the topics that we're going to be covering in this course. Now from a course objectives perspective, we're going to be covering five major things. 

We're going to first start out by talking about how to create a Private Link service and what a Private Link service is. Then we're going to be talking about private endpoints, what the differences are between those and Private Links, how to create them, plan for them and so on. Then we're going to be talking about how to configure access to your private endpoints, allowing for traffic to flow, denying traffic to flow, things like that. We'll talk about how to integrate your Private Link with your DNS, whether you're using a third party or Azure focus DNS. And then integrating the Private Link Service so that your on-premise clients can access it as well. 

Now from a prerequisite perspective, anyone who takes this course should absolutely be an expert in Azure administration skills. You should have extensive experience and knowledge of networking, hybrid connections, and network security, all three of those are absolutely going to be discussed in this particular course. And then subject matter expertise in planning, implementing, and maintaining Azure network solutions including routing and private access. Again, if you should have any questions, concerns, or feedback related to this course that you would like to give the Cloud Academy, here is the email that you can use, support@cloud 

Now, one piece of important information to be aware of I am going to be providing a number of demonstrations in this course, and each one of these demonstrations, the screenshots, and data were current at the time of the development of the course. Microsoft is extremely well known for continually providing agile updates to all of its services on very, very short time windows. So, between the time of when I developed this course to the time that you're viewing it, many, many things could have changed, could have been added to the Azure Network portal, or just Azure in general and that could affect all of the pieces that we talk about with respect to this course. So, be aware of that as you start to learn all of the different topics. So, with that let's go ahead and in the next video jump into the first topic talking about how to create a Private Link Service.


About the Author

Brian has been working in the Cloud space for more than a decade as both a Cloud Architect and Cloud Engineer. He has experience building Application Development, Infrastructure, and AI-based architectures using many different OSS and Non-OSS based technologies. In addition to his work at Cloud Academy, he is always trying to educate customers about how to get started in the cloud with his many blogs and videos. He is currently working as a Lead Azure Engineer in the Public Sector space.