![]() When managing ACL’s, there’s a button to Add principal, which allows you to select and add a user or group to assign ACL permissions to. If testing via storage explorer, connect to the lake using the 'ADLS Gen2 container or directory' option. You need to connect to the lake using the Data Lake Storage end point. There are a few things to be mindful of when testing with ACL’s: Although this depicts the minimum permissions required to get to a single file, in reality you’d likely elevate the Read permission to “Sub Folder 1” as a default permission, therefore allowing it to inherit down to all files and folders listed underneath it. Whilst in the portal you can assign this to files, it doesn’t do anything.Īs well as setting access explicitly to a folder, defaults can be set at any level to inherit permissions to newly created sub folders and files, but note that these do not apply to folders and files which already exist.īelow is a visualisation of a simple folder structure with the minimum ACL’s required at each level to read data from “File 1”, whilst granting no access to “File 2”. A user must have execute assigned to the entire hierarchy above the folder they have read and/or write access to. ![]() What this actually means is the user is able to navigate through the folder. Write - Grants write access to files and folders.Įxecute - Grants… execute. Read - Grants read access to files and folders (i.e. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |