You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/data-factory/connector-azure-blob-storage.md
+2-2Lines changed: 2 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -9,7 +9,7 @@ ms.service: data-factory
9
9
ms.workload: data-services
10
10
ms.topic: conceptual
11
11
ms.custom: seo-lt-2019
12
-
ms.date: 12/12/2019
12
+
ms.date: 01/16/2020
13
13
---
14
14
15
15
# Copy and transform data in Azure Blob storage by using Azure Data Factory
@@ -265,7 +265,7 @@ A data factory can be associated with a [managed identity for Azure resources](d
265
265
266
266
Refer to [Authenticate access to Azure Storage using Azure Active Directory](../storage/common/storage-auth-aad.md) for Azure Storage authentication in general. To use managed identities for Azure resources authentication, follow these steps:
267
267
268
-
1.[Retrieve data factory managed identity information](data-factory-service-identity.md#retrieve-managed-identity) by copying the value of "SERVICE IDENTITY APPLICATION ID" generated along with your factory.
268
+
1.[Retrieve data factory managed identity information](data-factory-service-identity.md#retrieve-managed-identity) by copying the value of **managed identity object ID** generated along with your factory.
269
269
270
270
2. Grant the managed identity proper permission in Azure Blob storage. Refer to [Manage access rights to Azure Storage data with RBAC](../storage/common/storage-auth-aad-rbac.md) with more details on the roles.
Copy file name to clipboardExpand all lines: articles/data-factory/connector-azure-data-lake-storage.md
+2-2Lines changed: 2 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -10,7 +10,7 @@ ms.service: data-factory
10
10
ms.workload: data-services
11
11
ms.topic: conceptual
12
12
ms.custom: seo-lt-2019
13
-
ms.date: 01/08/2020
13
+
ms.date: 01/16/2020
14
14
---
15
15
16
16
# Copy and transform data in Azure Data Lake Storage Gen2 using Azure Data Factory
@@ -157,7 +157,7 @@ A data factory can be associated with a [managed identity for Azure resources](d
157
157
158
158
To use managed identities for Azure resource authentication, follow these steps.
159
159
160
-
1.[Retrieve the Data Factory managed identity information](data-factory-service-identity.md#retrieve-managed-identity) by copying the value of the **service identity application ID** generated along with your factory.
160
+
1.[Retrieve the Data Factory managed identity information](data-factory-service-identity.md#retrieve-managed-identity) by copying the value of the **managed identity object ID** generated along with your factory.
161
161
162
162
2. Grant the managed identity proper permission. See examples on how permission works in Data Lake Storage Gen2 from [Access control lists on files and directories](../storage/blobs/data-lake-storage-access-control.md#access-control-lists-on-files-and-directories).
Copy file name to clipboardExpand all lines: articles/data-factory/data-factory-service-identity.md
+8-7Lines changed: 8 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -9,9 +9,8 @@ editor: ''
9
9
ms.service: data-factory
10
10
ms.workload: data-services
11
11
12
-
13
12
ms.topic: conceptual
14
-
ms.date: 04/08/2019
13
+
ms.date: 01/16/2020
15
14
ms.author: jingwang
16
15
---
17
16
@@ -153,17 +152,19 @@ You can retrieve the managed identity from Azure portal or programmatically. The
153
152
154
153
### Retrieve managed identity using Azure portal
155
154
156
-
You can find the managed identity information from Azure portal -> your data factory -> Properties:
155
+
You can find the managed identity information from Azure portal -> your data factory -> Properties.
157
156
158
157
- Managed Identity Object ID
159
158
- Managed Identity Tenant
160
-
-**Managed Identity Application ID** > copy this value
159
+
- Managed Identity Application ID
160
+
161
+
The managed identity information will also show up when you create linked service which supports managed identity authentication, like Azure Blob, Azure Data Lake Storage, Azure Key Vault, etc.
When granting permission, use object ID or datafactory name (as managed identity name) to find this identity.
163
164
164
165
### Retrieve managed identity using PowerShell
165
166
166
-
The managed identity principal ID and tenant ID will be returned when you get a specific data factory as follows:
167
+
The managed identity principal ID and tenant ID will be returned when you get a specific data factory as follows. Use the **PrincipalId** to grant access:
Copy the principal ID, then run below Azure Active Directory command with principal ID as parameter to get the **ApplicationId**, which you use to grant access:
177
+
You can get the application ID by copying above principal ID, then running below Azure Active Directory command with principal ID as parameter.
Copy file name to clipboardExpand all lines: articles/data-factory/store-credentials-in-key-vault.md
+3-3Lines changed: 3 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -11,7 +11,7 @@ ms.workload: data-services
11
11
12
12
13
13
ms.topic: conceptual
14
-
ms.date: 03/13/2019
14
+
ms.date: 01/16/2020
15
15
ms.author: jingwang
16
16
---
17
17
@@ -29,8 +29,8 @@ This feature relies on the data factory managed identity. Learn how it works fro
29
29
30
30
To reference a credential stored in Azure Key Vault, you need to:
31
31
32
-
1.**Retrieve data factory managed identity** by copying the value of "Managed Identity Application ID" generated along with your factory. If you use ADF authoring UI, the managed identity application ID will be shown on the Azure Key Vault linked service creation window; you can also retrieve it from Azure portal, refer to [Retrieve data factory managed identity](data-factory-service-identity.md#retrieve-managed-identity).
33
-
2.**Grant the managed identity access to your Azure Key Vault.** In your key vault -> Access policies -> Add new -> search this managed identity application ID to grant **Get** permission in Secret permissions dropdown. It allows this designated factory to access secret in key vault.
32
+
1.**Retrieve data factory managed identity** by copying the value of "Managed Identity Object ID" generated along with your factory. If you use ADF authoring UI, the managed identity object ID will be shown on the Azure Key Vault linked service creation window; you can also retrieve it from Azure portal, refer to [Retrieve data factory managed identity](data-factory-service-identity.md#retrieve-managed-identity).
33
+
2.**Grant the managed identity access to your Azure Key Vault.** In your key vault -> Access policies -> Add new -> search this managed identity to grant **Get** permission in Secret permissions dropdown. It allows this designated factory to access secret in key vault.
34
34
3.**Create a linked service pointing to your Azure Key Vault.** Refer to [Azure Key Vault linked service](#azure-key-vault-linked-service).
35
35
4.**Create data store linked service, inside which reference the corresponding secret stored in key vault.** Refer to [reference secret stored in key vault](#reference-secret-stored-in-key-vault).
0 commit comments