Grant a storage queue role to the app registration

Give the app registration the Storage Queue Data Contributor role so it can read, write, and delete on storage queue messages.

Note: In the Controlled Availability release stage, Splunk products may have limitations on customer access, features, maturity, and regional availability. For additional information on Controlled Availability please contact your Splunk representative.

In this step you give the Storage Queue Data Contributor role to the app registration for the connection that your Microsoft Azure dataset is associated with. This role enables the app registration to read, write, and delete on storage queue messages. For more information about role assignment in Microsoft Azure, see the Azure RBAC documentation: Assign Azure roles using the Azure portal

Note: This is task 5 of 5 tasks that you must complete to ensure that the Splunk-native data catalog that backs your Microsoft Azure dataset stays in sync with that dataset as it changes over time. See Ensure the Microsoft Azure dataset and its data catalog stay in sync.
  1. In the Azure portal, go to the Storage accounts page and open the details for your storage account.
  2. In the left menu, select Access Control (IAM).
  3. Select + Add and then select Add role assignment.
  4. On the Add role assignment page, search for the Storage Queue Data Contributor role, then select Next.
  5. Under Assign access to, select User, group, or service principal, then choose Select members.
  6. In the Select members dialog box, search for the name of the app registration for the connection to which your dataset is associated.
  7. Select the app registration name from the results.
  8. Choose Select, then select Review + assign.
  9. Review the settings and select Review + assign again to confirm.
Return to setup of your Microsoft Azure dataset. See Configure Microsoft Azure dataset details.