AuthorizationFailed error when trying to communicate with Azure Storage Account
Applies to
Azure CVO (Cloud Volumes ONTAP)
Issue
2023-02-15 00:01:25,622 UTC ERROR [Working Environments ] [5YqTHSyJ] [5YqTHSyJ ] [Anonymous ] (simplicator-akka.actor.default-dispatcher-56735) [SimplicatorServerActor:264] Simplicator request to http://localhost:8080/AzureProtocol/describeStorageAccountByName?resourceGroupName=xxxx&storageAccountName=xxxxxxxxxxxx failed: The client 'xxxxxxxx-xxxx-xxxx-xxxxx-xxxxxxxxxxxx' with object id 'xxxxxxxx-xxxx-xxxx-xxxxx-xxxxxxxxxxxx' does not have authorization to perform action 'Microsoft.Storage/storageAccounts/read' over scope '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxxx-xxxxxxxxxxxx/resourceGroups/xxxx/providers/Microsoft.Storage/storageAccounts/xxx' or the scope is invalid. If access was recently granted, please refresh your credentials. Code: AuthorizationFailed
- BlueXP is reporting the above Authorization error in the server.log even though all permissions have been confirmed as being in place per the documentation
- Symptom seen:
- Storage Account creation is successful but Container creation inside Storage Account fails with above error