This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 33%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAR%3C/text%3E%3C/svg%3E)
I am getting a 401 error while using the below code
Error: NoAuthenticationInformation, "Server failed to authenticate the request. Please refer to the information in the www-authenticate header.
%%pyspark
spark.conf.set("fs.azure.account.auth.type", "SAS")
spark.conf.set("fs.azure.sas.token.provider.type", "com.microsoft.azure.synapse.tokenlibrary.AkvBasedSASProvider")
spark.conf.set("spark.storage.synapse.akv", "<AZURE KEY VAULT NAME>")
spark.conf.set("spark.storage.akv.secret", "<SECRET KEY>")
df = spark.read.csv('abfss://<CONTAINER>@<ACCOUNT>.dfs.core.windows.net/<FILE PATH>')
display(df.limit(10))
Hello @Anisha Rayapati ,
Thanks for the question and using MS Q&A platform.
Hello @Anisha Rayapati ,
Just checking in if you have had a chance to see the previous response. We need the following information to understand/investigate this issue further.
TThis issue is not yet solved @PRADEEPCHEEKATLA-MSFT . But I implemented the same using tokenLibrary and it worked. But now When I run the notebook separately the notebook runs without any issues and gets the access token. but when I embed the notebook in a pipeline and run through pipeline it gives an authentication error (400 error) as below:
"Py4JJavaError: An error occurred while calling z:com.microsoft.azure.synapse.tokenlibrary.TokenLibrary.getSecret.\n: java.lang.Exception: Access token couldn't be obtained {\"result\":\"DependencyError\",\"errorId\":\"BadRequest\",\"errorMessage\":\"LSRServiceException is [{\\"StatusCode\\":400,\\"ErrorResponse\\":{\\"code\\":\\"LSRResolveFailure\\",\\"message\\":\\"Cannot acquire MSI token for a Vault audience.\\",\\"target\\":\\"Vault\\"},\\"Message\\":\\"Cannot acquire MSI token for a Vault audience.\\",\\"Data\\":{},\\"InnerException\\":null,\\"StackTrace\\":\\" at
Hello @Anisha Rayapati ,
This issue looks strange. For a deeper investigation and immediate assistance on this issue, if you have a support plan you may file a support ticket.
Hello @Anisha Rayapati ,
Did you get a chance to open a support ticket?
II have the exact same issue as described above. I am running this in a Synapse notebook:
import sys
from pyspark.sql import SparkSession
sc = SparkSession.builder.getOrCreate()
token_library = sc._jvm.com.microsoft.azure.synapse.tokenlibrary.TokenLibrary
connection_string = token_library.getSecret('some-key-vault-name', 'some-secret-name')
print(connection_string)
When I execute it directly from the notebook it works. When I try to run the notebook in a Synapse pipeline it fails with the below error:
{
"errorCode": "6002",
"message": "Py4JJavaError: An error occurred while calling z:com.microsoft.azure.synapse.tokenlibrary.TokenLibrary.getSecret.\n: java.lang.Exception: Access token couldn't be obtained {\"result\":\"DependencyError\",\"errorId\":\"BadRequest\",\"errorMessage\":\"LSRServiceException is [{\\"StatusCode\\":400,\\"ErrorResponse\\":{\\"code\\":\\"LSRResolveFailure\\",\\"message\\":\\"Cannot acquire MSI token for a Vault audience.\\",\\"target\\":\\"Vault\\"},\\"Message\\":\\"Cannot acquire MSI token for a Vault audience.\\",\\"[...]
Is there an update on this issue @PRADEEPCHEEKATLA-MSFT ? Should I open an Azure support ticket?
Hello @Arnfried Rixen ,
For a deeper investigation and immediate assistance on this issue, if you have a support plan you may file a support ticket.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 61%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Do we have any update on this? Running into same issue.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 93%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPH%3C/text%3E%3C/svg%3E)
Try fill out optional argument <LINKED SERVICE NAME>. It solved my problem.
Use Microsoft Spark Utilities:
secret= mssparkutils.credentials.getSecret(KEYVAULT_NAME, SECRET_NAME)
Hello @Arnfried Rixen , @Anisha Rayapati , @Sivagnana Sundaram, Krithiga ,
Thanks for the question and using MS Q&A platform.
This is a known issue with product. Our product team currently working on the solution. I will update this thread once it’s available.
Meanwhile workaround is to create a linked service against the Azure key vault.
Use get secret with linked service using the below documentation:
https://learn.microsoft.com/en-us/azure/synapse-analytics/spark/apache-spark-secure-credentials-with-tokenlibrary?pivots=programming-language-csharp#getsecret
Hope this will help. Please let us know if any further queries.
------------------------------
or upvote 
button whenever the information provided helps you. Original posters help the community find answers faster by identifying the correct answer. Here is how