Grant permission to the Event Grid to write to the storage queue
Give the Event Grid a role on your Microsoft Azure storage account that allows it to deliver lifecycle event messages.
Note: In the Controlled Availability release stage, Splunk products may have limitations on customer access, features, maturity, and regional availability. For additional information on Controlled Availability please contact your Splunk representative.
The Event Grid must have the Storage Queue Data Message Sender role on the storage account. Without this role, the Event Grid fails to deliver blob lifecycle event messages. For more information about role assignment in Microsoft Azure, see the Azure RBAC documentation: Assign Azure roles using the Azure portal
Note: This is task 4 of 5 tasks that you must complete to ensure that the Splunk-native data catalog that backs your Microsoft Azure dataset stays in sync with that dataset as it changes over time. See Ensure the Microsoft Azure dataset and its data catalog stay in sync.
-
You must have completed the previous task. See Create an event subscription for the Event Grid system topic.
-
See the additional prerequisites for the entire set of tasks at Ensure the Microsoft Azure dataset and its data catalog stay in sync.
- In the Azure portal, go to the Storage accounts page and open the details for your storage account.
- In the left menu, select Access Control (IAM).
- Select + Add and then select Add role assignment.
- On the Add role assignment page, search for the Storage Queue Data Message Sender role, then select Next.
- Under Assign access to, select User, group, or service principal, then choose Select members.
- In the Select members dialog box, search for Microsoft.EventGrid.
- Select the Microsoft.EventGrid service principal from the results.
- Choose Select, then select Review + assign.
- Review the settings and select Review + assign again to confirm.