Share via

Private Azure Machine Learning Workspace getting forbidden to reach private Storage Account for SAS

Jay 86 Reputation points
2024-07-26T04:34:00.46+00:00

My Azure Machine learning workspace is configured with private endpoint , my aml is configured to a Storage account which is also configured private endpoint and disabled the public access, My Storage Account network will looks like below

enter image description here

The problem:

When I launch the AML workspace from the portal, all are working fine except there is a single API Call which is getting failed with the 403 Forbidden


https://0121921-12012191-12121.workspace.eastus2.api.azureml.ms/notebook/v2.0/subscriptions/
Azure Machine Learning
Azure Machine Learning
An Azure machine learning service for building and deploying models.
2,735 questions
Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
2,946 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Luis Arias 6,136 Reputation points
    2024-07-26T09:01:33.74+00:00

    Hi Jay,

    If you already setup all your network communication , you can change the authentication type to the storage accounts:

    User's image

    Verify to use your Entra ID instead of credential based(SAS/Access Key)

    User's image

    Additional references:

    Cheers,

    Luis