Forum Discussion
SFTP storage event trigger stopped in live Azure synapse mode
My Azure synapse account is linked with git and i am working on my feature branch and created storage event trigger that get files from SPTP server when i run pipeline manual. In master and feature branch it status is started but when i publish it into live mode its status become stop and while publishing i get this error message Forbidden. Role based access check failed for resource /subscriptions
Some one know this issue
1 Reply
Below may be the causes:
- Missing RBAC roles on the storage account
- You (or the Synapse managed identity) need Storage Blob Data Contributor and Storage Account Contributor roles on the storage account where the event trigger is listening.
- Without these, Synapse cannot create the event subscription.
- Event Grid permissions
- The Synapse workspace’s managed identity also needs EventGrid EventSubscription Contributor on the storage account.
- Publishing identity mismatch
- If you’re publishing from Git, the user account doing the publish must have the above roles.
- If Synapse managed identity is used, ensure it has the roles instead.
- Network/firewall restrictions
- If the storage account is behind a firewall, ensure “Allow trusted Microsoft services” is enabled, or explicitly allow Synapse’s managed identity.
