Reputation: 1649
Azure roles for Blob storage for specific set of permission
I need to grant AD users with minimum permission to do following activities using blob storage, what are the roles to be assigned.
Access to a storage account with read/write/delete permission on all containers and blobs underneath in Azure Portal
Ability to create SAS token.
Any help is much appreciated, thanks in advance
Upvotes: 0
Views: 1370
Answers (1)
Reputation: 136346
Access to a storage account with read/write/delete permission on all containers and blobs underneath in Azure Portal
For this Storage Blob Data Contributor role should be sufficient as it allows read/write/delete permissions to Blob storage resources.
Ability to create SAS token.
For this Storage Blob Delegator will be needed.
For a list of Azure built-in roles for blobs, please see here.
Upvotes: 2
Related Questions
- Azure blob storage and container permissions
- How to authorize Azure B2C user to read blob storage
- How to assign "Storage Blob Data Reader" role to a user/group in azure?
- Assign Azure BLOB Container Access to Users
- How to create a custom role in Azure, so that another user is able to only view the list of files in a blob container but not its contents(RBAC)
- Authorize a user for azure blob access
- Shared access policy for storing images in Azure blob storage
- altering blob container access permissions
- Can't programmatically set permissions to blob container in Azure Storage
- Windows azure storage membership blob permissions