Access Blob Storage from Azure Search - Private endpoint


I’m trying to deploy an environment with an Azure Cognitive Search that needs access to a Blob Storage. The Storage Account resides inside a vNET. When I try to create an indexer on the search service, it fails because it can’t access the storage account.

I found this article that explains how to grant access, but it uses the REST API. It is the creation of the private endpoint that’s giving me problems. Specifically, this part from step 1:

A private endpoint allocated with a private IP address in a "Pending" state. The private IP address is obtained from the address space allocated to the virtual network of the search service specific private indexer execution environment. Upon approval of the private endpoint, any communication from Azure Cognitive Search to the storage account originates from the private IP address and a secure private link channel.

Does anyone know how do this in Terraform?