Share Azure Blob Containers w/External Partners Using Shared Access Signatures/Access Policy - Demos 

You're welcome!

Great! Glad it helped.

Thanks, I really like this video also. It is a very important use case and one almost every company I worked at needed. Made my day, that you are able to use it!

Fantastic!

Thanks and glad it helped.

Glad to hear it!

You're very welcome!

Thanks, glad it helped.

Glad you liked it!

Glad it was helpful!

My pleasure!

Hi@@CoopmanGreg , I followed your instructions. However, when shared the SAS Urls to users, they were not able to access . AuthenticationFailed Server failed to authenticate the request. Make sure the value of Authorization header is formed correctly including the signature. RequestId:6593c8cd-c01e-006e-0d17-4232df000000 Time:2022-03-27T20:19:22.1895723Z Signature did not match. String to sign used was /blob/dpstorageaccnt/$root dpstoragecontainer1-read 2020-10-02 c How do I fix it? Thank you.

@@dianeng1030 It might be a firewall problem. If you have selected networks on, you might have to add their users ip address to the "Add IP ranges to allow access from the internet or your on-premises networks" section' or change the setting to allow all networks to connect. You can find these settings under network or your storage account. Be careful, and check with your company's IT networking dept and make sure you can do this safely. If that does not work, double check how I did it, see ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-R_YrhDD47vk.html and maybe you made a mistake there.

You're welcome!

Thanks Ashish!

Thanks!

Thanks Mike for the kind words. As to your question, Yes they can download and use Azure Explorer which would be the manual way of doing the uploads. But, a utility can be run from here local computer using AZCOPY utility (see my video, ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-I0s1H9VAcPA.html ) also. They can place the AZCOPY command into a DOS batch file and schedule it to run on a schedule using Windows Task Scheduler. The code would look something like this (this uploads the all files within the folder): azcopy sync "d:\testupload" "localwork.blob.core.windows.net/abunchofstuff/?sv=2019-10-10&st=2021-06-07T15%%3A58%%3A00Z&se=2023-06-09T15%%3A58%%3A00Z&sr=c&sp=racwdxl&sig=3mKibZBZqgCJO6vfY%%2FcxoqudAY1Oi%%2FvHUNipSM418Y%%3D" in the batch file. Hope this helps.

I understand. Maybe this link will help, sauget-ch.fr/en/2020/11/create-a-shared-access-signature-on-an-adls-gen2/

Sorry for the late reply. In the video I am only setting up a SAS for London, as you can see when I right click on the London container at 18:52 at then go into setting up the SAS Urls . I would then proceed if I was doing this in real life, to select each separate city (like Fort Lauderdale) and then set up a new SAS for it (which would be different URL(s) that would be created.) I only send the SAS Urls to the respective Tennis centers and they would not be able to guess the others, nor should they.

Thanks for the feedback. Sorry, I have not done it in any script, but if I do, I will try to make it into a video.

Sorry, it worked ok for me in the demos.

I made a video on Databricks that uses ADLS Gen2 blob storage. See ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-xsesrHIW9FQ.html . Outside of that video I do not plan on making any further Data bricks videos at this time. But, thanks for your suggestion.

Thanks. What is the response and/or error message they are getting in browser windows? and does it work for you when you try the URLs in question?

I just responded to someone else with this problem "Leon L" in this videos comments section. I am not sure if this solves the problem. But check it out under the "Leon L". In general you should get the customers ip addresses they will be using the URLs with and then enter them on the IP Access list for the respective storage account. For more details, see the thread I mentioned.

Did you get the error when you tested it as yourself?

I know that error and have experienced myself many times in the past. It was not a hard fix, but right now I cannot remember what I did to get around it. I am not able to test it either right now. Maybe the IP address she is using is not white listed on the storage account, I will try to get back to you if you don't get the answer first, but it might be a while. Sorry.

@@CoopmanGreg Thank you for your response Greg. This is making me learn AIM and RBAC. I just assigned myself role access in AD 2 minutes ago. I am trying to access it as we speak

@@CoopmanGreg No worries Greg. Thank you. I will white list my ip address and see what happens

Nope. I couldn't get it to work. Any direction you can provide hen you have time will really be helpful