cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

linked service ADLS Gen2 via Key Vault error The specified account key is invalid.

rocksde
Copper Contributor

‎Jun 25 2020 03:58 PM - edited ‎Jun 25 2020 03:59 PM

‎Jun 25 2020 03:58 PM - edited ‎Jun 25 2020 03:59 PM

linked service ADLS Gen2 via Key Vault error The specified account key is invalid.

Hi,

Sorry but I am stuck.

I have a ADLS Gen2 with a storage firewall. I setup a Key Vault that has a secret for the ADLS containing the connection string from key 1. ADF is allowed on the Key Vault via policy. For some reason I get this error: The specified account key is invalid. Check your ADF configuration. The input is not a valid Base-64 string as it contains a non-base 64 character, more than two padding characters, or an illegal character among the padding characters. 

 

This happens on both keys by the way and even when I regenerate the keys.

I cannot find anything on that anywhere. Any ideas?

Thanks 

Labels:
5,831 Views
0 Likes
2 Replies
Reply
2 Replies
rohanislam

‎Jun 28 2020 10:52 PM

‎Jun 28 2020 10:52 PM

Re: linked service ADLS Gen2 via Key Vault error The specified account key is invalid.

Looks like your ADF is able to go into the key vault and read the secret value but probably it is not able to identify it as a Base-64 string.

A Base-64 string contains alpha (upper and lower cases) numeric characters with + and / as allowed symbol. The length must be multiple of 4. Normally upto two = symbols are used as padding at the end of the string to make the length a multiple of 4.

So, please verify the storage key.
Check the configuration of the ADF.
Check how you defined your variable.
Try putting your storage account connection string within double quotes.
0 Likes
Reply
Madhu_Balan

‎May 16 2021 11:31 AM

‎May 16 2021 11:31 AM

Re: linked service ADLS Gen2 via Key Vault error The specified account key is invalid.

@rocksde If you're trying to authenticate ADLS Gen2, you're supposed to provide only the KEY in the secret (not the full identifier of your storage account). Not sure why microsoft has designed this in such a way. Please test and let me know if it works for you.

1 Like
Reply