Oct 29 2020 09:26 AM - last edited on Feb 01 2021 04:21 PM by Eric Starker
We are trying to execute an Azure Function (HTTP type) using Azure Data Factory (ADF). The Function App has the App Service Authentication set as "On" and the action to take when request is not authenticated is set as "Log in with Azure Active Directory".
If we have this configuration in the Function App, is it possible to execute the Azure Function from ADF?
We configured the Azure Function and Active Directory App by following this documentation:
Configure your App Service or Azure Functions app to use Azure AD login
We aren’t using a web app and maybe that’s the confusing part when trying to follow the steps from the documentation. ADF is the one that needs to authenticate when trying to access/execute the function. Do you know anything about this type of configuration?
Oct 29 2020 09:34 AM
@mariellecespedes I haven't done this myself before yet - but I believe it should work.
Have you enabled the managed identity on the Azure Data Factory?
Oct 29 2020 09:50 AM
Yes, we have Managed Identity in ADF.
The response when we get after the execution is a 401 Error type (unauthorized).
We used the Advanced settings configuration in the Function App and used the following information from the App Service app:
We retrieved the information from the Overview tab from the App Service app. Copy-pasted it into the Function App configuration and followed the steps from the documentation.
We aren’t using a web app (in this case it is ADF) and maybe that’s the confusing part when following the steps from the documentation, as ADF is the one who is calling the function.
Oct 29 2020 09:55 AM
@mariellecespedes When you access the function directly (not using ADF) - do you get the same 401, or does that authenticate?
Oct 29 2020 10:01 AM
I get the same response.
This screenshot is from the "Code + Test" tab.
Oct 29 2020 10:05 AM
OK, so this seems to be functions related indeed and not ADF related.
Have you tried accessing the functions URL directly in a web browser to see if you get a redirect to AAD?
Oct 29 2020 10:13 AM
Yeah, it seems to be functions related, thanks.
Yes, I pasted the functions URL in a web browser and it prompted me for my login credentials. I entered them and this was the result:
Oct 29 2020 10:37 AM
@mariellecespedes OK, that's a good sign, meaning the AAD sign-on actually works.
I seems like I was too optimistic about this scenario, it seems like AAD authentication FROM ADF is not supported. You will have to use a Functions key when connecting from ADF. I'm sorry about not confirming this earlier.
Dec 22 2020 08:41 AM
Any chance this is going to make it on the roadmap for ADF? AAD Auth from ADF I mean?
Apr 19 2021 04:56 PM
May 10 2021 06:22 AM
Has anyone tried it by enabling Authentication on function app and accessing it from ADF through function key authentication. I don't think it works. If anyone made it work then please let me know.