cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
Help
Data Engineering
Join discussions on data engineering best practices, architectures, and optimization strategies within the Databricks Community. Exchange insights and solutions with fellow data engineers.
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Azure Databricks - ADLS Gen 2.0 Access

dalion
New Contributor III

‎04-22-2023 01:23 PM

Hi all,

I have a Azure Databricks Setup (non-premium) and an ADLS Gen 2.0 setup. I am trying to access the ADLS Gen 2.0 containers via a simple access key mode for testing.

There is no error, if the ADLS Gen 2.0 is set to "Enable from all networks".

But, when it is set to "Enabled from selected virtual and IP Addresses" and "Allow Azure Services on the trusted services list to access this storage account", its doesn't work.

It errors with 403 Get operation error.

Operation failed: "This request is not authorized to perform this operation.", 403, GET, https://xxxxxxxxx.dfs.core.windows.net/raw?upn=false&resource=filesystem&maxResults=5000&timeout=90&..., AuthorizationFailure, "This request is not authorized to perform this operation. RequestId:342de772-c01f-0036-5a58-7553e4000000 Time:2023-04-22T20:24:04.6283599Z"

Labels:
0 Kudos
5 REPLIES 5

-werners-
Esteemed Contributor III

‎04-25-2023 07:40 AM

if you want to put access restrictions on the ADLS, there is some config to do:

https://learn.microsoft.com/en-us/azure/storage/common/storage-network-security?tabs=azure-portal

Basically you need to tell what is allowed and what isn't.

0 Kudos

dalion
New Contributor III
In response to -werners-

‎04-25-2023 10:21 AM

Hi @Werner Stinckens​  , I have already tried to all the respective IP address. Still its not working.

0 Kudos

-werners-
Esteemed Contributor III
In response to dalion

‎04-25-2023 11:25 PM

the Databricks VM's which are provisioned do not have static ip adresses; so you probably have to keep on adding IPs.

Better to use a subnet mask or use a VNet.

0 Kudos

fabio2352
Contributor

‎04-25-2023 11:00 AM

Hi, can you check two link below

https://learn.microsoft.com/en-us/azure/databricks/getting-started/connect-to-azure-storage

https://docs.databricks.com/storage/azure-storage.html

0 Kudos

dalion
New Contributor III
In response to fabio2352

‎04-25-2023 11:11 AM

Hi @Fabio Santos​ , thanks for the response. All these ADLS Gen 2.0 network setting are set to public. But to secure the customer's data, it should contain a list of Whitelisted IP addresses.

0 Kudos

Join Us as a Local Community Builder!

Passionate about hosting events and connecting people? Help us grow a vibrant local community—sign up today to get started!

Sign Up Now
Announcements
Top