Hey everyone, I'm really struggling here. I'm trying to upload a file to my Azure account, but no matter what I do, I can't seem to make it work. I've got two admin-level users, and I've created the storage space along with a sub area. My user has rights assigned directly in IAM, through a group, and a couple of inherited permissions based on the IAM user's status. However, when I try to upload even a small file, I get this error: 'Failed to upload 1 out of 1 blob(s): smalPic.jpg: This request is not authorized to perform this operation.' The error message is pretty vague, so I'm wondering if the issue might be linked to the type of account I have. Where should I check for that? Any help would be greatly appreciated!
2 Answers
You need to assign data plane roles for Azure Storage to upload blobs successfully. For uploading files, the Storage Blob Data Contributor role is essential. And just so you know, using EntraID integrated authentication is typically the best practice rather than relying on storage access keys.
It sounds like the issue might be related to the permissions you have. Make sure you check which rights you actually assigned. Just having Contributor or Owner roles doesn't mean you can upload to the Storage account; you actually need specific roles for that.
Yeah, exactly! If you're pushing files, you'll need the Blob Storage Contributor role for your account.
Those were the only ones I had. What specific storage account permissions do I need? Do I add those directly within the Storage account settings?
Thanks for the info! Where do I actually add the data plane roles?