Granting the service principal access to an Azure Data Lake Store. Now let me guide you through the following steps: This is not the case for the example I describe in this blog post but I advise you to read the following article to fully understand the concept of applications and service principals, and the relationship between them: Application and service principal objects in Azure Active Directory (Azure AD) You can create multiple service principals in case you have a multi-tenant application. You will receive a service principal object next to an application object when you register an Azure AD application in the Azure portal. You can use a certificate to automate authentication when executing an unattended script. You do not have to change the app credentials if your responsibilities change. Typically, these permissions are restricted to only what the app needs to do. You can assign permissions to the app identity that are different than your own permissions. Using a service principal is preferred instead of running under your own credentials, because: So what is a service principal? It is basically an impersonation identity of your application which is registered in Azure Active Directory. 
Both options result in a situation in which your Logic App will provide an OAuth 2.0 token that will be attached to each request that will be made to the Data Lake Store.
You can either sign in with an Azure AD account, or you can connect using a service principal, the option I will describe.
When you use the Logic Apps Azure Data Lake connector, you see that there are two possible ways to authenticate: As an example I will show how to create a folder.Īzure Data Lake Store uses Azure Active Directory for authentication. In this blogpost I will explain how you can authenticate using a service principal that has been authorized on the Azure Data Lake Store for a specific action. Lately I have noticed several people on forums that are facing “Unauthorized” errors while using the Azure Data Lake connector. Azure Data Lake – Append File (sequential).Azure Data Lake – Append File (concurrent).Since a couple of months Azure Logic Apps offers an Azure Data Lake Connector that can perform the following actions on an Azure Data Lake Store:
0 kommentar(er)
