Hi @Tan, Judith ,
Thanks for the question and using MS Q&A platform.
You control access to storage resources by assigning roles to an Azure AD application registration associated with the storage account.
Assigning the Storage Blob Data Contributor to the ADLS Gen2 storage account should be good enough.
When granting permission, in Azure resource's Access Control (IAM) tab -> Add role assignment -> Assign access to -> select registered application and role Storage Blob Data Contributor.
Note: Please do wait for 10-15 mins to reflect the permissions.
Now try to Mount the Azure Data Lake Storage Gen2 using OAUTH 2.0
For more details, refer to Access Azure Data Lake Storage Gen2 using OAuth 2.0 with an Azure service principal.
Hope this will help. Please let us know if any further queries.
------------------------------
- Please don't forget to click on or upvote button whenever the information provided helps you. Original posters help the community find answers faster by identifying the correct answer. Here is how
- Want a reminder to come back and check responses? Here is how to subscribe to a notification
- If you are interested in joining the VM program and help shape the future of Q&A: Here is how you can be part of Q&A Volunteer Moderators