I cannot access to the azure blob storage through azure storage explorer at the company network

[lwzhang6]

My Azure resource was hosted in europe. I am physically located in USA. I am trying to access to the azure datalake/Blob storage, I have issue in accessing to it. it shows the error:

Unable to retrieve child resources

ProducerError:{ "name": "Electron Net Error", "message": "{\"name\":\"Electron Net Error\",\"cause\":{}}" }

Can you give suggestion on how to fix the issue as soon as possible ?

[craxal]

@lwzhang6 What platform are you running on? What version of Storage Explorer are you using? Please refer to our issue template for information we usually need to help diagnose problems.

Here are some additional questions:

1. When you say "Azure Datalake/Blob Storage", are you referring to ADLS Gen1 or Gen2? If Gen1, you should know that those services have been retired, and Gen1 functionality has been removed from Storage Explorer.

2. Assuming Gen2, how are you setting up your connection to the blob container? Are you:

   • Signing in?
   • Connecting to an account using name and key or connection string?
   • Connecting directly to the container by signing in?
   • Connecting directly to the container using a SAS URL?

3. If you are signing in, do you have the necessary RBAC permissions to list or read the necessary objects (see our troubleshooting guide).

4. Are you expected to connect through a proxy server? Have you configured Storage Explorer to use that proxy (ideally by setting Proxy > Proxy Configuration to "Use system proxy")?

5. Can you please provide any app logs to help us further diagnose the issue?

[lwzhang6]

1. it is gen2.
2. 2. signing in with the company Microsoft azure account; connecting to the account using the Microsoft azure account (our company email address) and login info.
3. NOT SURE QUESTION 3
4. yes proxy is configured (I tried USA proxy hostname and our Europe one) none of them can get me connected.
5. HOW TO GET APP logS?

[lwzhang6]

My azure cloud administration colleague asigned me as the following in the azure: Resource - reader storage blob data - contributor

Would it be correct configuration?

[lwzhang6]

to answer question 3 My azure cloud administration colleague asigned me as the following in the azure: Resource - reader resource group -reader

storage blob data - contributor

Would it be correct configuration?

[craxal]

I think those permissions should be sufficient, though it depends on what level they are available. You can check these permissions yourself, as well, from the Azure portal and clicking on "Access Control (IAM)" on the blade for the storage account you're attempting to access. Typically, you need the Reader role set at the subscription level to list storage accounts and Storage Blob Data Contributor set at the account level.

If you follow the link I provided above, you'll find clear instructions on how to gather app logs. Just select Help > Open Logs Directory from the menu, create a zip file from the appropriate session folder, and attach it here.

And please do let us know what platform you're on, what version of Storage Explorer you're using, etc.

[lwzhang6]

it is windows 10 enterprise computer MS azure storage explorer - version 1.33.1; azcopy version 10.23.0

[lwzhang6]

logs.zip I uploaded the zip. Can you please help?

[craxal]

You shared the authentication logs. Can you also share the app logs, please?

Also, are you able to view the resources you need from the Azure portal? That is, can you see a list of the contents of the blob container you are trying to access using the Data Storage > Containers item in the storage account blade? Doing this should help us narrow down whether this is a Storage Explorer or an Azure issue.

[lwzhang6]

how to get app logs? In the azure Data Storage > Containers, I can see a list of the folders of the blob containers. But, clicking any of the folders does not work. I am able to see the folders, but can not get into it.

[lwzhang6]

2024-04-26_094749.zip

[lwzhang6]

i uploaded the app logs. may you please have a look? thanks

[craxal]

I'm seeing two errors, which might be related. The first is a connection timeout error, and the second is a "no suitable credentials" error related to listing file shares. I suspect Azure may be having a hard time authenticating your connection. Or it could be requests aren't making it to Azure (possibly blocked by the proxy?).

Can you share any details about the storage account you're trying to connect to? For example, is a blob-only storage account (for example, premium)?

When did you sign in? Have you tried removing your account and signing back in?

One way to work around this while we're trying to find a solution: Could someone provide a SAS URL for you to use temporarily? If that works, then it's definitely a sign-in related issue.

[lwzhang6]

Could you please give your offical microsoft account for me to connect you directly by email for this issue related to Azure? OR directly drop me an issue?

Regarding the proxy issue, can you suggest how I fix it? I have the company proxy info and do not know how to figure it. also which IP address or web link I should request unblock? THANK YOU very much for your help

[MRayermannMSFT]

@lwzhang6 it sounds like you have quite a bit unique network constraints going on here. At this point I would recommend you open an Azure support ticket via the portal.