Security Roles On Azure Data Lake Store Account - Part Two

In this article, you will learn about security roles on Azure Data Lake Store account.

Introduction

This article is in continuation of Azure Data Lake Store account article. Here, in this article, we will be working on the following modules.

  • Inviting User to Azure Data Lake store for adding on Access control.
  • Setting IP address to take control over the access of Azure Data Lake Store Account.
  • Adding Locks on Azure Data Lake Store account.
  • Setting Permission for Files on Azure Data Lake Store Account.

Note - Please walk through my previous article to know more about Azure Data Lake Store.

 

Let's work on inviting the user to Azure Data Lake store for adding Access Control to the Azure Data Lake Store account.
 
Follow the below steps now.

Step 1

Move to the Azure Data Lake Store account that you have created on the previous demo article. Click on "Access" on the Data Explorer of the respective Data Lake Store account.



Step 2

Click on "Add" option in the "Access" panel of Azure Data Lake Store account.



Step 3

This will take you to "Assign Permissions" blade. Click on "Select User or Group" and click on the "Invite" button to invite users to the Access panel on your Azure Data Lake Store account.



You can enter the email address of the user whom you want to invite for this access option on the DLS account over here. This will send an invitation call mail which will help the users to get in with the token for Access panel towards the Azure Data Lake Store account.



Set IP address to take control over the access of Azure Data Lake Store Account

Azure Data Lake Store account also helps us to add the client IP address which we can use for adding IP addresses to take control over the access of Azure Data Lake Store Account.

This helps us a lot in locking the access for the data with the help of the network, using Firewall.

Move to the Data Lake Store Account now and click on "Firewall" under "Settings" panel.



Enable the "Firewall" option by clicking at “ON” in "Enable Firewall" option.



And here, you can define the IP address range for which only that particular user defined within the IP address range can have access over the Data, on the respective Data Lake Store Account.

Add Locks on Azure Data Lake Store account

This article will help you to add locks for Access over Azure Data Lake Store Account.
 
Move to "Settings" panel on your Azure Data Lake Store account and click on "Locks", followed by "Add" button at the top menu.



Mention a "Lock name" over here. Let's name it “DemoLock” and select the Lock type that you need – you are supposed to have two options here, Read-only and Delete. You can also add notes for the Lock over here.



Click on “OK” after completing the configuration for the Lock. And, here goes your Lock which has been created.



You can even delete the Lock by clicking on the Content menu option in the Locks panel and clicking on the Delete button.



Set Permission for Files on Azure Data Lake Store Account

Click on the Data Lake Store account on your Azure Portal and go to Data Explorer. Click on the "File" for which you wish to set the permissions for the User.



Click on the "Access" button now.



You can set permissions over here with the help of check ins at Read, Write, and Execute.



Click on "Save" once it is done.



And now, the changes are saved towards the access permission for the file in the Data Explorer of Azure Data Lake Store Account.