how to give an azure ML compute cluster access to data lake gen2 storage?
when i try to run an azure ML pipeline that has inside it a connection to datalake storage using compute cluster (python sdk v2), i get an error that the compute cluster doesnt have access to the storage but when i run the pipeline using compute instance that is assigned to me i dont have any problem but im trying to do automation using synapse pipeline so i need to use a compute cluster not compute instance.
i tried to give the azure ml workspace owner access to data lake gen2 storage but that didnt fix the problem,i tried to use managed identity on the cluster and i got a principal id but when i try to add that given principal id to datalake storage in IAM access i cant enter a principal id in it i only can write a user name
Follow the steps below to grant access to your cluster using managed identity.
- Copy the principal ID you obtained when creating the compute cluster.
- Go to Enterprise applications in
Microsoft Entra ID.
- Search for the managed identity using the principal ID you copied earlier.
- You will see the name and details of the managed identity. Copy its name and go to the ADLS Gen 2 account to grant access.
Give Storage Blob Data Contributor or Storage Blob Data Reader based on your requirement.
- Using Azure Entra Id I cant see `Office 365 Exchange Online` under `APIs my organization uses`
- New tenant b2clogin URL returns error with "removed or changed"
- Azure Entra ID tokens endpoint issues an expired token
- Azure AD B2C password expiration
- Trouble when creating PowerBI report via JavaScript Client Library
- Azure Active Directory Enterprise App OpenID and User Provisioning (SCIM)
- How to select specific app registration based on tenant ID in ASP.NET Core MVC with Microsoft Identity Platform?
- Airflow ERROR - Error authorizing OAuth access token: Invalid JSON Web Key Set. [The request to sign in was denied.]
- Systematic Way to Identify Through Azure UI Required "App Registration" API Permission
- How does Delegated OnlineMeetingRecording.Read.All work?
- How to enable SAML as authentication provider in MS Entra?
- Get domain\username from microsoft graph
- Unable to Add User to Resource Group: Authorization_RequestDenied Error
- Login with Microsoft External Account -Issue when the user cancels the consent prompt during authentication
- Invalid argument error when adding Required Reviewer via Azure DevOps API
- Use Azure AD authentication but manage roles in database in .NET 6
- React Native MSAL - SSO does not work from Native to Web - iOS
- Microsoft: Unable to resolve Configuration with the provided Issuer
- Microsoft Graph filter for onPremisesExtensionAttributes
- Get users from Microsoft Entra by API without Graph
- What are the differences between Service Principal and App Registration?
- Unable to restore a deleted user with graph API
- How can I pass custom claims delivered via assertion into claims returned of access token?
- Custom Azure AD role for full access to Microsoft Cloud App Security
- Getting Redirect URI Mismatch error in Azure AD b2C
- Unable to acquire a token in IAuthDelgate of the microsoft information protection sdk
- Azure AD B2C IEF custom sign-up policy grab query parameters
- Cypress does not log in by cy.setCookie() in AzureDevOps project
- Issue with Group email address domain when create a new Microsoft 365 Group
- IDX10511: Signature validation failed. Keys tried: 'Microsoft.IdentityModel.Tokens.X509SecurityKey