![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 42%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBH%3C/text%3E%3C/svg%3E)
Azure Blob Storage
An Azure service that stores unstructured data in the cloud as blobs.
2,918 questions
The issue arises when a user, who is part of an Azure AD group, cannot access files in a container even though the group has been added to the container's ACL. Initially, the user was granted direct ACL permissions on the container and could access files using Storage Explorer. However, after removing the individual permissions and adding the Azure AD group to the ACL, the user encountered access errors.
During the investigation, it was identified that the Execute permission was missing in the ACLs. This permission is crucial for enabling access to the container's contents. To resolve this issue, add the Execute permission to the ACL and then verify the user's access again.
Resources:
- Authorize access to blobs using Microsoft Entra ID
- Access control lists (ACLs) in Azure Data Lake Storage Gen2
- Access control model in Azure Data Lake Storage Gen2
- Azure Blob Storage troubleshooting
Hope this helps. If you have any follow-up questions, please let me know. I would be happy to help.
Please do not forget to "Accept the answer" and "up-vote" wherever the information provided helps you, as this can be beneficial to other community members.