# Azure Storage Blob URL Signing

Azure Blob Storage URL Signing integration enables signing URLs for content stored in Azure blob containers. Follow these steps:

#### **Step 1: Create an Azure Storage Account and Configure Access**

1. Follow [this guide](https://learn.microsoft.com/en-us/azure/storage/common/storage-account-create) to create a storage account in Azure or use an existing account.
2. Obtain the **Access Key** for your storage account:
   * Go to your storage account in the Azure portal.
   * Navigate to **Access keys** under **Settings**.
   * Copy one of the **Access keys** and note the **Storage account name**.

#### **Step 2: Add Signing Information in Lasso**

1. Navigate to **Settings → Integrations** in Lasso.
2. Select **Azure Blob Storage** and fill in the following fields:
   * **Domain**: The domain where your content resides (e.g., `https://youraccount.blob.core.windows.net`).
   * **Account Name**: The name of your Azure storage account.
   * **Access Key**: The key for your Azure storage account.
   * **Container**: The name of the blob container.
   * **TTL**: The time-to-live for the signed URL (minimum 15 minutes).
   * **Example URL**: Provide an example URL to validate your credentials.

#### **Step 3: Automatic Signing for Azure Blob Storage Content**

Once configured:

* All content from the specified **Domain** (e.g., `https://youraccount.blob.core.windows.net`) will be signed automatically by Lasso.
* Lasso uses the **Account Name** and **Access Key** to generate a secure, temporary signed URL for any required content.
* Signed URLs are used to securely access the content for analysis and dashboard display without making the content public.
* When a signed URL expires, Lasso regenerates it on demand, ensuring continuous secure access without additional setup.