Share via

User Managed Identity Access Issues to Storage Account

P_And8852 1 Reputation point
2022-10-31T15:08:45.04+00:00

Hello all,

We've created a User assigned managed identity in Azure to access storage containers under a Data Lake storage account resource.

The issue we're running into is that the the Managed Identity doesn't have access to the containers despite having several areas in Azure where it has been given the proper roles/ACL access.

For example,

At the Storage Account level, the UAMI has "Storage Blob Data Contributor"
In and individual storage container, the UAMI has R/W/E permissions on the ACL

I'm not sure where else the UAMI needs security allotments to access the containers, but when we run a logic app it gets a forbidden "This request is not authorized to perform this action"

Azure Storage
Azure Storage
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
3,541 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Bhatt, Ramachandra 0 Reputation points
    2023-08-22T06:20:06.7866667+00:00

    Hi Team,

    even I face similar issue, I have an java app deployed as Spring boot app in App Service and is trying to access a storage account using user defined managed identity as auth, but it always throws 403 with error the server returned an error message that says 'Signature did not match'. Not sure what is the issue.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.