This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 1%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
I develop an Java application which needs to check if Azure Blob Storage: "sshblob01" has container "sshcont01". This Java app should use 'Managed Identity' (MSI)
To do so I create Azure Managed Identity with Client ID: "c1098b90-***************-59e7ff34074c".
Then I assign this Identity to Azure Virtual Machine I run my Java APP on.
As well I assign roles: "Storage Blob Data Contributor" and "Storage Blob Data Owner" for this Identity to "sshblob01". My APP uses code:
BlobServiceClient dlsClient = new BlobServiceClientBuilder().
endpoint("https://sshblob01.blob.core.windows.net")
.credential(new ManagedIdentityCredentialBuilder().clientId("c1098b90-***************-59e7ff34074c").build())
.buildClient();
BlobContainerClient containerClient = dlsClient.getBlobContainerClient("sshcont01");
boolean exists = containerClient.exists(); // HUNG FOREWER !!!
System.out.println("\tcontainerClient.exists(): "+exists);
It hung on containerClient.exists();
If I use 'Shared key' or 'Shared access signature' (SAS) like:
BlobServiceClient dlsClient = new BlobServiceClientBuilder()
.endpoint("https://sshblob01.blob.core.windows.net")
.credential(new StorageSharedKeyCredential("sshblob01","wCPHm***********************************************hofw=="))
.buildClient();
or
BlobServiceClient dlsClient = new BlobServiceClientBuilder()
.endpoint("https://sshblob01.blob.core.windows.net"+"/"+"?sv=2021-06-08&ss=bfqt&srt=sco&sp=rwdlacupiytfx&se=2022-10-08T18:46:56Z&st=2022-09-26T10:46:56Z&spr=https&sig=92******************************%3D")
.buildClient();
it does work well
@Sergey Shabalov Firstly, Apologies for the delay response!
Firstly can you confirm are using the java code for managed identity as explained in this sample code?
Have you provided the Contributor permissions at the account level to his managed identity, If not please provide the permission and let me know the status
SumanthMarigowda-MSFT,
Firstly can you confirm are using the java code for managed identity as explained in this sample code?
Yes, I run the provided code on Azure VM
H
ave you provided the Contributor permissions at the account level to his managed identity, If not please provide the permission and let me know the status
Yes, I have:
image.png (401.8 KiB)
It does work properly if I assign "System Assigned Identity" the "Storage Blob Contributor" role to the blob storage "sshblob01".
If the same role is assigned to the "User Assigned Identity" it still hangs.