Azure Synapse workSpace Permission

Jie Li 71 Reputation points
2022-03-10T16:57:17.42+00:00

I created an Azure Synapse workSpace and linked a Azure Data Lake Storage Gen1 successfully. but the page warns me that I do not have permission to reach the storage。How could I reach to the VC under the Gen1 Account
the options I choose to linked to the Azure Data Lake Storage Gen1 are as below. (I am sure I have put correct information, 'Test connect' is ok)
182011-image.png

Azure Synapse Analytics
Azure Synapse Analytics
An Azure analytics service that brings together data integration, enterprise data warehousing, and big data analytics. Previously known as Azure SQL Data Warehouse.
4,696 questions
0 comments No comments
{count} votes

Accepted answer
  1. PRADEEPCHEEKATLA-MSFT 85,586 Reputation points Microsoft Employee
    2022-03-11T05:56:07.483+00:00

    Hello @Jie Li ,

    Thanks for the question and using MS Q&A platform.

    You may follow the below steps to grant the service principal or the managed identity with proper permission in ADLS Gen1 storage accounts.

    182039-synapse-adlsgen1acl.gif

    • As source: In Data explorer > Access, grant at least Execute permission for ALL upstream folders including the root, along with Read permission for the files to copy. You can choose to add to This folder and all children for recursive, and add as an access permission and a default permission entry. There's no requirement on account-level access control (IAM).
    • As sink: In Data explorer > Access, grant at least Execute permission for ALL upstream folders including the root, along with Write permission for the sink folder. You can choose to add to This folder and all children for recursive, and add as an access permission and a default permission entry.

    182113-image.png

    For more details, refer to Use service principal authentication in ADLS Gen1 accounts.

    Hope this will help. Please let us know if any further queries.

    ------------------------------

    • Please don't forget to click on 130616-image.png or upvote 130671-image.png button whenever the information provided helps you. Original posters help the community find answers faster by identifying the correct answer. Here is how
    • Want a reminder to come back and check responses? Here is how to subscribe to a notification
    • If you are interested in joining the VM program and help shape the future of Q&A: Here is how you can be part of Q&A Volunteer Moderators

1 additional answer

Sort by: Most helpful
  1. Pratik Somaiya 4,206 Reputation points
    2022-03-11T04:09:37.427+00:00

    Hello @Jie Li

    Can you check if the Service Principal you are using have access on Synapse Workspace. If not, then you need to add it in Access Control (IAM) option in the left pane of the Synapse Workspace

    If adding manual information is giving error, please try doing it from Azure Subscription option and check if you are facing the same error, if not then there's maybe some issue in addition of credentials in manual way

    0 comments No comments