Azure Data Lake Storage Gen2 Connection

This article describes how to connect to Azure Data Lake Storage Gen2 (ADLS Gen2).

Availability

Data processing & catalog	Edge processing	Lineage	Exceptions
✔	✗	✗	Doesn’t support writing data using Data Transformation steps. Supports CSV, Apache Parquet, Microsoft Excel files.

Data processing & catalog

Edge processing

Lineage

Exceptions

✔

✗

Doesn’t support writing data using Data Transformation steps.
Supports CSV, Apache Parquet, Microsoft Excel files.

Prerequisites

Review how sources and connections work.
Create a source to add this connection to.

Add a connection

Go to [your source] > Connections and select Add Connection.
In Connection type, select Azure Data Lake Storage Gen2.
Fill in the following:
- Name: A meaningful name for your connection. Used to indicate the location of catalog items.
- Description (Optional): A short description of the connection.
- Storage account name: The name of the Azure Storage account you want to use.
- Container name: A container associated with the selected Azure Storage account.

Add credentials

Select Add Credentials.
Choose an authentication method and continue with the corresponding step:
- Entra ID: * Entra ID: Authentication using Microsoft Entra ID (formerly Azure Active Directory) for OAuth 2.0 authentication.
- Storage account access key: Authentication using the access key generated for your Azure Storage account. This provides direct access without OAuth configuration.

One set of credentials must be defined as default for each connection. Otherwise, DQ evaluation fails and previewing data in the catalog is not possible.

Entra ID

To authenticate using Entra ID:

Fill in the following:
- Name: Provide a clear name for this set of credentials.
- Description (Optional): Explain what the credentials are used for or provide other useful information.
- Client ID: The application (client) ID registered in the Microsoft Entra portal.
  
  This appears as a GUID (for example, 4701c7e7-1178-4006-a1fc-b4c3ee5cfef7) and is found in the Entra ID portal in App registrations > [app name] > Overview.
- Client Secret: The secret value generated for the application in the Microsoft Entra portal (App registrations > [app name] > Certificates & secrets).
  
  Client secrets expire (maximum 24 months). Plan to renew them before expiration to avoid connection failures.
- Tenant ID: The directory (tenant) ID of your Microsoft Entra instance.
  
  This appears as a GUID (for example, 12345678-1234-1234-1234-123456789012) and is found in the Entra ID portal in App registrations > [app name] > Overview, or in Azure Active Directory > Overview.
  
  For details about registering an application and generating credentials, see Register an application with Microsoft Entra ID.
To use this set of credentials by default when connecting to the data source, select Set as default.

Storage account access key

Fill in the following:
- Name: Provide a clear name for this set of credentials.
- Description (Optional): Explain what the credentials are used for or provide other useful information.
- ADLS shared key: The access key for your storage account.
  
  You can find this in the Azure Portal: Storage Account > Security + networking > Access keys. For details, see Manage storage account access keys.
To use this set of credentials by default when connecting to the data source, select Set as default.

Add write credentials

If you want to export data to this source, add write credentials. Select Add Credentials and follow the instructions in Add credentials.

Troubleshooting

Connection test fails with AuthorizationFailure

If you receive a 403 AuthorizationFailure error when testing the connection, this might be caused by IP restrictions in Azure.

To resolve this, grant access to Ataccama runtime’s IP addresses in your Azure network settings. Contact Ataccama Support to obtain the necessary IP addresses.

Next steps

Test and save your connection to complete setup.

Was this page useful?