![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 90%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Azure Blob Storage
An Azure service that stores unstructured data in the cloud as blobs.
Greetings!
The AllowedCopyScopeAuthorizationFailure error occurs when the permitted scope for copy operations in your Azure storage account is set to Private link, and the conditions for this setting are not met. Specifically, for the copy operation to succeed, both the source and destination storage accounts must have private links configured to the same virtual network. If these conditions are not met, a 403 Forbidden error is returned because the operation violates the permitted scope.
In your case, the error was caused by the configuration of the AllowedCopyScope feature. To resolve this issue, you can either ensure that both storage accounts have private links configured to the same virtual network or change the AllowedCopyScope setting to allow copy operations from anywhere. The latter approach was tested and successfully resolved the issue.
Resources:
- Permitted scope of copy operations (CopyBlob) and HTTP 403 AllowedCopyScopeAuthorizationFailure
- Azure Storage Account Networking
Hope this helps. If you have any follow-up questions, please let me know. I would be happy to help.
Please do not forget to "up-vote" wherever the information provided helps you, as this can be beneficial to other community members.