Azure Synapse Analytics
An Azure analytics service that brings together data integration, enterprise data warehousing, and big data analytics. Previously known as Azure SQL Data Warehouse.
5,305 questions
Issue with Creating Storage Event Trigger in Azure Synapse – Access Token Missing Required Claims
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 22%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)
Anil Kumar Nagar
0
Reputation points
- I have Owner access on:
- The Azure Storage Account
- The Azure Synapse Workspace
- My storage account is a general-purpose v2 account.
- The Synapse workspace has system-assigned managed identity enabled.
- I assigned the following roles to the Synapse workspace's managed identity on the storage account:
-
Storage Blob Data Contributor -
Storage Queue Data Contributor(for event trigger support)
-
❌ Problem: When I try to publish the Storage Event Trigger from Synapse Studio, I get the following error:
The received access token is not valid: at least one of the claims 'puid' or 'altsecid' or 'oid' should be present. If you are accessing as application please make sure service principal is properly created in the tenant.
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 18%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGG%3C/text%3E%3C/svg%3E)
Ganesh Gurram 6,125 Reputation points Microsoft External Staff2025-04-24T11:30:30.35+00:00 Register the
Microsoft.DataFactoryresource provider on your subscription for storage event triggers to activate the same in Azure Synapse Analytics.If you have already done this, please check the below troubleshooting steps:
The error message you're encountering indicates that the access token being used does not contain the required claims (
puid,altsecid, oroid). This is often related to how the managed identity is configured or how the service principal is set up in your Azure tenant.Service Principal Setup - If you are accessing the storage account as an application, make sure that the service principal is properly created in your Azure tenant and has the required permissions. The service principal should have the same roles assigned as the managed identity if it is being used.
Access Token Retrieval - If you are manually retrieving the access token, ensure that the token is being requested with the correct scopes and that the identity used to obtain the token has the necessary permissions.
For more details refer:
- Resolve Azure Synapse Analytics Apache Spark pool storage access issues
- Troubleshoot serverless SQL pool in Azure Synapse Analytics
Similar issues: https://learn.microsoft.com/en-us/answers/questions/1133028/errors-when-trying-to-create-a-storage-event-trigg
I hope this information helps.
Kindly consider upvoting the comment if the information provided is helpful. This can assist other community members in resolving similar issues.
Sign in to comment
Sign in to answer