Share via

AMG Blob Storage - Grant user permission

AMG Admin 0 Reputation points
2025-12-02T16:10:18.1333333+00:00

I tried to grant a user to see the blob storage container but failed. Can anyone detail how to do this?

Azure Blob Storage
Azure Blob Storage
An Azure service that stores unstructured data in the cloud as blobs.
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Q&A Assist
    2025-12-02T16:10:28.0366667+00:00
    AI generated content. This question contains an answer created with AI from Q&A Assist. Learn more

    To grant a user permission to see the blob storage container in Azure Blob Storage, you can follow these steps:

    1. Sign in to the Azure portal with an account that has the necessary permissions to manage access.
    2. Navigate to your storage account where the blob container is located.
    3. In the left-hand menu, select Access Control (IAM).
    4. Click on Add role assignment.
    5. In the role assignment pane, search for and select the Storage Blob Data Contributor role, which allows users to view and manage blob data.
    6. Under Assign access to, select User, group, or service principal.
    7. Click on + Select members and search for the user you want to grant access to.
    8. After selecting the user, click Review + assign to complete the process.

    After these steps, the user should have the necessary permissions to view the blobs in the specified container.

    References:

    0 comments
  2. Vallepu Venkateswarlu 1,065 Reputation points Microsoft External Staff Moderator
    2025-12-02T18:33:36.1666667+00:00

    Hi @ AMG Admin,

    It sounds like you're having some trouble granting a user permission to view a blob storage container. No worries, I can help you with that! Here's a step-by-step guide to help you assign the right permissions:

    Step-by-Step Instructions to Grant Permissions

    1. Open the Azure Portal: Sign in to your Azure Portal.
    2. Navigate to Your Storage Account:
      • Find and select the specific storage account where your blob container is stored.
    3. Access IAM (Identity and Access Management):
      • In the storage account blade, select the Access control (IAM) option.
    4. Add a Role Assignment:
      • Click on Add role assignment.
      • Choose a role that fits the permissions you want to grant. For your scenario, you might want to select Storage Blob Data Reader if you just want the user to read the data or Storage Blob Data Contributor if the user needs write access as well.
      • Search and select the user or group you want to assign the role to.
      • Click Save to apply the changes.

    Additional Notes

    • Ensure that the user you are granting permissions to exists in your Azure Active Directory (AAD).
    • If the built-in roles don't meet your needs, you can create a custom role with specific permissions (like Microsoft.Storage/storageAccounts/blobServices/containers/read for container access).

    Common Permissions for Blob Storage Access

    • Microsoft.Storage/storageAccounts/blobServices/containers/read: Allows reading the blob container properties.
    • Microsoft.Storage/storageAccounts/blobServices/containers/blobs/read: Allows reading blobs in the container.

    Follow-Up Questions

    If you're still encountering issues, here are some follow-up questions that might help narrow down the problem:

    • What error message did you receive when trying to grant permissions?
    • Are you using a specific user or a service principal to grant access?
    • Have you checked if the user already has any conflicting roles assigned?

    Feel free to reach out if you need more detailed help or run into any specific issues! Hope this helps!

    References

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.