question

Naga-4366 avatar image
0 Votes"
Naga-4366 asked HimanshuSinha-MSFT commented

ADLS Container level access

Hi Team,

Unable to find container level access in ADLS to individual users. Please provide some leads.

For Example - If ADLS consists 20 users with 20 containers and in that, each user need to access individual container only, and the user shouldn't have access to the containers.

Thanks in Advance !!!

Regards,
NagaSri

azure-data-lake-storage
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hello @Naga-4366 ,
We haven’t heard from you on the last response and was just checking back to see if you have a resolution yet .In case if you have any resolution please do share that same with the community as it can be helpful to others . Otherwise, will respond back with the more details and we will try to help .
Thanks
Himanshu

0 Votes 0 ·

1 Answer

SathyamoorthyVijayakumar-MSFT avatar image
0 Votes"
SathyamoorthyVijayakumar-MSFT answered SathyamoorthyVijayakumar-MSFT commented

Hello @Naga-4366,

Thanks for the question and using MS Q&A platform.

From my understanding you'd like provide access to a user to a container - for 20 such instances.

One option is to make use of the RBAC (Role based Access Control)

  1. On the Azure Portal, find the container you wish to grant access to

  2. On the left pane, click on Access control (IAM)

  3. On the top, click on Add -> Add role assignment

  4. For Role, select the role you wish the members to have. For containers & blobs, consider adding roles with the Storage Blob Data prefix

  5. Leave Assign access to as default

  6. Under Select, find the user you'd like to grant access for.

  7. Click Save

You'll have to repeat the above steps for other users and other containers.

144649-image.png

The other option is that you can making use of the ACL. You could set an ACL at the container level by following the below step.

Container --> Manage ACLS --> Add Principal

144640-image.png

Reference : https://docs.microsoft.com/en-us/azure/storage/blobs/data-lake-storage-access-control#how-to-set-acls

Note : For an ADLSGEN2 based storage accounts we have ACL level access at the Folder level .

The below is how the permissions are evaluated.

Note: Azure role assignments are evaluated first and take priority over any ACL assignments.

144684-image.png

You could refer this document to further understand ACLs and RBAC

Hope this will help. Please let us know if any further queries.


  • Please don't forget to click on 130616-image.png or upvote 130671-image.png button whenever the information provided helps you. Original posters help the community find answers faster by identifying the correct answer. Here is how

  • Want a reminder to come back and check responses? Here is how to subscribe to a notification

  • If you are interested in joining the VM program and help shape the future of Q&A: Here is how you can be part of Q&A Volunteer Moderators





image.png (118.2 KiB)
image.png (130.4 KiB)
image.png (50.9 KiB)
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hello @Naga-4366,

Just checking in to see if the above answer helped. If this answers your query, do click Accept Answer and Up-Vote for the same. And, if you have any further query do let us know.

0 Votes 0 ·

Hello @Naga-4366,

Following up to see if the above suggestion was helpful. And, if you have any further query do let us know.

0 Votes 0 ·