HomepageCase studiesBook a demo

Microsoft Azure

Set up Microsoft Azure Integration

Note: This guide outlines a reference configuration; specific steps may vary due to provider updates or your organization's security policies. Please share feedback if you encounter any discrepancies that prevent a successful setup.

Set up Azure Blob Storage Integration

To enable Open Loyalty to export data directly to your Azure environment, you must create a Storage Account and a Container, and generate a SAS (Shared Access Signature) token that allows write access.

Prerequisites

  • A Microsoft Azure account with an active subscription.

  • Permissions to create Resources and Storage Accounts.

1. Create the Storage Account

1

Log in to the Azure Portal.

2

In the search bar at the top, type Storage accounts and select it.

3

Click + Create.

4

Fill in the Project details and Instance details:

  • Subscription: Select your subscription (e.g., "Pay-As-You-Go").

  • Resource group: Select an existing group or click Create new (e.g., rg-openloyalty).

  • Storage account name: Enter a globally unique name (lowercase only).

    • Example: olstorageexport

  • Region: Choose the region closest to your operations.

  • Performance: Standard.

  • Redundancy: Locally-redundant storage (LRS) is sufficient.

5

Click Review + Create, then click Create.

Note: Deployment may take approximately 20 seconds.

2. Create a Blob Container

1

Once the deployment is complete, go to your new Storage account.

2

In the left sidebar, under Data storage, click Containers.

3

Click + Container.

4

Configure the container

  • Name: Enter a name (e.g., open-loyalty-exports).

  • Public access level: Set to Private (no anonymous access).

5

Click Create.

3. Generate a SAS Token

You must generate a SAS token specifically for the Container (not the whole storage account) to ensure the correct permissions.

1

Inside your Storage account menu, navigate to Data storage → Containers.

2

Click on the container you just created (e.g., open-loyalty-exports).

3

In the container menu, click Shared access tokens.

Important: Ensure you are in the Container's "Shared access tokens" menu, not the Storage Account's menu.

4

Permissions: Check only the following boxes:

  • Write

  • Add

  • Create

  • (Do not check Read or Delete unless specifically required for your internal auditing).

5

Start and expiry date/time:

  • Start time: Set to "Now" (or 5 minutes in the past to avoid clock skew issues).

  • Expiry date: Set this to a date far in the future (e.g., 1 year or more).

Note: If the SAS token expires, data exports will fail immediately until a new token is generated and updated in Open Loyalty.

6

Click Generate SAS token and URL.

4. Submit Configuration to Open Loyalty

Azure will generate a Blob SAS URL and a SAS Token. You must share the Blob SAS URL (which includes the token, SAS Token starts with ?sv=...) with the Open Loyalty team.

Do not send the credentials directly via email.

1

Copy the Blob SAS URL from the Azure portal.

2

Upload the .json file (or paste its contents) to a secure file exchange platform (e.g., Bitwarden Send, Proton Drive, or 1Password).

3

Generate a secure link.

4

Send the secure link to the Open Loyalty team along with the Name of the Blob Container.

Last updated

Was this helpful?