What permissions are required to make ACL changes to a directory in an Azure storage container?

Question

If I have a storage account in the Azure cloud and I have a container for which I would like to modify the ACLs in either the root directory or some subdirectory, what specific permission(s) would I require? If there is more than one permission responsible for this, please list out possible avenues of approach.

I am not sure if this is necessary for an answer to be provided, but this is a general purpose V2 storage account with hierarchical namespace enabled.

Note, I am not asking about what potential RBACs could be assigned, I am looking for the exact permissions such as those related to, for example, Microsoft.Resources or Microsoft.Storage. I have been poring over countless Microsoft documentation pages but I cannot find an answer.

Answer 1

Not Sure what specific permissions you are looking in Microsoft.Resources or Microsoft.Storage.

Assuming you want to modify ACL for root directory and sub directories. But seems it not possible because this in build by Microsoft. You can manage the access control list of directory or blob in storage accounts that have the hierarchical namespace.

One of the following security permissions is required:

In the scope of the target container, storage account, parent resource group, or subscription, your user identity has been assigned the Storage Blob Data Owner role.

You are the owner of the container, directory, or blob to which ACL settings will be applied. since i don't have reputation i pasted here link for picture:

Refer Doc 1 & Doc 2 for more information.