Hi SCCMAdmin, The Global Administrator role does not grant data plane access to Azure Storage resources. For accessing Azure File Shares or Blobs, you need specific Azure RBAC roles:
- Storage Blob Data Contributor: Grants full access to blob data (read, write, delete).
- Storage Blob Data Reader: Grants read-only access to blob data.
- Storage File Data SMB Share Contributor: Grants full access to file shares.
- Storage File Data SMB Share Reader: Grants read-only access to file shares.
Steps to Resolve
- Assign the appropriate role via Azure Portal:
- Go to Storage Account > Access Control (IAM) > Add Role Assignment.
- Assign the relevant role (e.g., Storage Blob Data Contributor) to your user.
- Alternatively, assign via Azure CLI:
az role assignment create \ --role "Storage Blob Data Contributor" \ --assignee <YourUserPrincipalName> \ --scope /subscriptions/<SubscriptionId>/resourceGroups/<ResourceGroup>/providers/Microsoft.Storage/storageAccounts/<StorageAccountName>
Reauthenticate in Azure Storage Explorer after role assignment to ensure access.
References
- https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles/storage
- https://learn.microsoft.com/en-us/azure/azure-resource-manager/management/control-plane-and-data-plane
If this resolves your issue, please accept the answer.
Luis