通过ACL授予ADLv2文件夹访问权限 [英] Granting ADLv2 Folder Access via ACL

问题描述

我正在尝试使用ACL共享对ADLv2内部文件夹的访问权限。遗憾的是，用户无法在Azure Storage Explorer中看到该文件夹​​。能帮忙吗？
$


步骤：



1）我已将用户添加为访客AAD下的帐户。



2）用户已接受邀请并经历了正常流程。



3）我已将访客帐户添加到安全组。



4）使用"管理访问权限" Azure Storage Explorer中的（又称ACL）：我已将安全组的对象ID添加到具有读取权限的文件系统，以及具有完全权限的第一个文件夹。



5用户登录Azure存储资源管理器，他们可以看到订阅，但他们无法展开它以查看该文件夹。



用户没有角色分配给ADLv2资源。我怀疑这是问题所在。但是，授予的任何角色分配似乎都提供完全访问权限，并且不尊重ACL。显然这太高级了，我必须限制他们访问
特定文件夹。

I'm trying to share access to a folder inside ADLv2 using ACLs. Unfortunately the user is unable see the folder inside Azure Storage Explorer. Can you please help?

Steps taken:

1) I have added the user as a guest account under AAD.

2) The user has accepted the invite and gone through the usual process.

3) I've added the guest account to a security group.

4) Using "Manage Access" (aka ACLs) in Azure Storage Explorer: I've added the security group's object ID to the filesystem with Read access, and the first folder with full permissions.

5) The user logs into Azure Storage Explorer and they can see the subscription but they're unable to expand it to see the folder.

The user does not have a role assignment to the ADLv2 resource. I suspect this is the issue. However, any role assignment granted appears to give full access and does not respect the ACL. Obviously this is way too high-level, I must limit their access to a particular folder.

推荐答案

嗨西蒙，

感谢您指出这个问题。我正在与产品团队合作，并在收到更多信息后再回复您。

Thanks for pointing this issue. I’m working with the product team and get back to you when I have more information.

这篇关于通过ACL授予ADLv2文件夹访问权限的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！