Not able to access or download blobs from azure storage with service principal credentials

Hello Experts ,

I am trying to download/upload blobs with ansible azure_rm_storageblob module in AWX ( I have tried in Ansible core too, got the same error) , and get below error

Error getting keys for account XXXXXXXXX - Azure Error: AuthorizationFailed\nMessage: The client ‘YYYYYYYYYYYYYYYYYYYYYY’ with object id ‘YYYYYYYYYYYYYYYYYYYYYYYYY’ does not have authorization to perform action ‘Microsoft.Storage/storageAccounts/listKeys/action’ over scope ‘/subscriptions/ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ/resourceGroups/RG-DataEngineering-Dev/providers/Microsoft.Storage/storageAccounts/XXXXXXXXXXXXXX’ or the scope is invalid. If access was recently granted, please refresh your credentials."

If I use the same service principal key in the python code , I am able to upload and download blobs without any error .

I am wondering , when using service pricipal authentication with Azure , why it is doing listKeys operation.

I hope someone will understand this issue or might have faced this, looking to hear back from them.

regards,
Prakash.

This sounds like a question for the Ansible core group that manages the azure_rm_storageblob module. You can see information on who maintains this at the bottom of the docs page on it: https://docs.ansible.com/ansible/latest/modules/azure_rm_storageblob_module.html#status

This mailing list is specifically for the AWX project.

Kiitos.