Home > Blockchain >  Error when I am trying to connect between Azure Data factory and Azure Data lake Gen2
Error when I am trying to connect between Azure Data factory and Azure Data lake Gen2

Time:11-02

Hello Azure Data factory experts, I have this error I am trying to connect from Azure data factory to Data lake Gen2 by creating Linked services in Azure data factory, but I got this error. How can anyone help?

BR, Mohammed

ADLS Gen2 operation failed for: Storage operation '' on container 'XXXXXXXXXX' get failed with 'Operation returned an invalid status code 'Forbidden''. Possible root causes: (1). It's possible because the service principal or managed identity don't have enough permission to access the data. (2). It's possible because some IP address ranges of Azure Data Factory are not allowed by your Azure Storage firewall settings. Azure Data Factory IP ranges please refer enter image description here

CodePudding user response:

Below are the different authentication types which Azure Data Lake Storage Gen2 connector supports:

  • Account key authentication
  • Service principal authentication
  • System-assigned managed identity authentication
  • User-assigned managed identity authentication

As per your error message you might be using service principal or managed identity authentication method in Azure data lake Gen2 connector.

You must grant proper permissions for service principal/managed identity. Grant at least Execute permission for ALL upstream folders and the file system, along with Read permission for the files to copy. Alternatively, in Access control (IAM), grant at least the Storage Blob Data Reader role.

You can check this document to see examples on how the permissions works in Azure data lake Gen2.

  • Related