This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 65%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
I am the owner of the account and I have all permissions on all the services created. I have created a Storage Account and an Azure data factory service. I am trying to migrate some data from Azure SQL Server to Snowflake. In order to do the same, I am using copy in the pipeline. I have configured the Source and sink ( already created the linked services for Azure SQL server and snowflake). But while validation it says you got to have Blob storage. So I created Azure Blob storage service and tried to link it under settings (Enable Staging) but while connecting using SAS URI, I have created a new SAS URI and tried to copy-paste but got below error :
Fail to connect to https://perfxx001.blob.core.windows.net/: Error Message: The remote server returned an error: (403) Forbidden. (ErrorCode: 403, Detail: This request is not authorized to perform this operation., RequestId: 0b094dcd-f01e-0011-4efd-f73b49000000), make sure the credential provided is valid. The remote server returned an error: (403) Forbidden.StorageExtendedMessage=RequestId:0b094dcd-f01e-0011-4efd-f73b49000000 Time:Thu, 23 Dec 2021 13:06:02 GMT, The remote server returned an error: (403) Forbidden. Activity ID: 6d369270-5b2a-47d3-9b8a-7e16448e8078.
Hello @amarjeet singh ,
Did you get a chance to accept it as answer(
)?
I think I have found what was wrong while creating SAS URI. I was putting my IP in the section: "Allowed IP addresses". After many tries, I figured it out.
Closing thread !! Thanks, guys !!
Hello @amarjeet singh ,
Glad to know that your issue has resolved. You can accept it as answer(
). This can be beneficial to other community members. Thank you.
403 is seen when authorizing with a shared key because "All authorized requests must include the Coordinated Universal Time (UTC) timestamp for the request." Information about this can be found in Authorize with Shared Key.The storage services ensure that a request is no older than 15 minutes by the time it reaches the service. This guards against certain security attacks, including replay attacks. When this check fails, the server returns response code 403 (Forbidden).
Make sure you connect from ADF to Azure Storage Account as a trusted service as explained here.
@Alberto Morillo , Yes above conditions are met. Still getting the same error. Below is the SAS URI getting created :
https://perfxx001.blob.core.windows.net/?sv=2020-08-04&ss=b&srt=sc&sp=rwdlacx&se=2021-12-25T15:01:05Z&st=2021-12-24T07:01:05Z&sip=14.98.189.6&spr=https&sig=jOkiEjqwnzXUfipVlNT8ou479bALRC8jxNA4DLdCYPc%3D