Azure Data Lake:向Azure Data Lake Store的请求未经授权
[英]Azure Data Lake : The request to Azure Data Lake Store was unauthorized
问题描述
We are trying to move our data from Azure Table Storage to Azure Data Lake. 
我们正在尝试将数据从Azure表存储移动到Azure Data Lake。 So we created a Data Factory (with linked services, data sets and pipeline). 因此,我们创建了一个数据工厂(具有链接的服务,数据集和管道)。 Pipline is created with Copy Action. 使用复制动作创建管线。
One of the linked service we choose "Azure Data Lake Store" and we authorized configuration and the finally configuration is like below 链接服务之一,我们选择“ Azure Data Lake Store”,我们授权配置,最终配置如下所示
{
"name": "XXXXXStoreLinkedService",
"properties": {
"description": "",
"hubName": "XXXXXXdatafactory_hub",
"type": "AzureDataLakeStore",
"typeProperties": {
"dataLakeStoreUri": "https://XXXXXX.azuredatalakestore.net/webhdfs/v1",
"authorization": "**********",
"sessionId": "**********",
"subscriptionId": "XXXXXXXXXXXXXXXXXXX",
"resourceGroupName": "XXXXXXXXXXXXXXX"
}
}
}
After creating the pipeline , it seems that the data movement is happening. 创建管道之后,似乎正在发生数据移动。 But we are getting this error 但是我们得到这个错误
Copy activity encountered a user error: ErrorCode=UserErrorAdlsUnauthorizedAccess,'Type=Microsoft.DataTransfer.Common.Shared.HybridDeliveryException,Message=The request to 'Azure Data Lake Store' was unauthorized,Source=Microsoft.DataTransfer.ClientLibrary,''Type=System.Net.WebException,Message=The remote server returned an error: (403) Forbidden.,Source=System,'
From this error, it seems that we have an unauthorized request. 从这个错误看来,我们有未经授权的要求。 But as mentioned we above we authorized the Azure Data Lake store linked service correctly. 但是如上所述,我们已正确授权了Azure Data Lake存储链接服务。
Can anybody please let us know, what are the possible cases of this error and also what we need to do here. 有人可以让我们知道此错误的可能情况是什么,以及我们在此需要做什么。
3 个解决方案
解决方案1
1 已采纳 2016-01-21 21:27:26
Can you please confirm if the user you are getting the authorization information for, has been allowed access to the appropriate Data Lake Store account? 您能否确认您正在获得其授权信息的用户是否已被允许访问适当的Data Lake Store帐户?
https://azure.microsoft.com/en-us/documentation/articles/data-lake-store-secure-data/ https://azure.microsoft.com/zh-CN/documentation/articles/data-lake-store-secure-data/
Details are available at the above link. 有关详细信息,请参见上面的链接。 It is 3-step process. 这是三步过程。 So, do ensure you have completed them all. 因此,请确保已完成所有步骤。
Thanks, Sachin 谢谢,Sachin
Program Manager, Azure Data Lake Azure数据湖项目经理
解决方案2
0 2016-02-02 20:57:15
The way we got around this was by opening up the access by checking the three boxes next to "All Users and Groups": 解决此问题的方法是通过选中“所有用户和组”旁边的三个框来打开访问权限:
I created all the data factory and data lake store assets as the Owner and still got the authorization error that you did. 我创建了所有数据工厂和数据湖存储资产作为所有者,但仍然收到您执行的授权错误。 The only difference is that my Data Factory is on a different subscription than the Data Lake Store. 唯一的区别是我的数据工厂与数据湖商店的订阅不同。 I don't think that this should matter since I am an admin on both subscriptions with the same Microsoft login and am an owner on the Data Lake Store...There is probably a more focused way to do this but the AAD stuff referenced in the accepted answer didn't work for me...until then this will work. 我认为这并不重要,因为我是两个具有相同Microsoft登录名的订阅管理员,并且是Data Lake Store的所有者...可能有一种更集中的方式来执行此操作,但在AAD中引用了接受的答案对我不起作用...直到这将起作用。
解决方案3
0 2016-11-09 15:31:17
You need to set recursive execute permissions at a root level in order to perform operations on files below the directory structure. 您需要在根级别设置递归执行权限,以便对目录结构下的文件执行操作。 This is easier explained in an image. 在图像中更容易解释。 Please see - 请参见 -
https://azure.microsoft.com/en-gb/documentation/articles/data-lake-store-access-control/#common-scenarios-related-to-permissions https://azure.microsoft.com/zh-CN/documentation/articles/data-lake-store-access-control/#common-scenarios-related-to-permissions
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.