Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
The subscribe permission for Azure and Fabric events allows you to manage access to the event listeners, ensuring that only authorized users can subscribe to the events. The subscribe permissions are assessed during creation and for the lifetime of the event listener. This ensures that only authorized users can access and consume events.
Behavior
If the user doesn't have the subscribe permission, the user isn't able to set up a consumer for the events. If the owner of the event listener loses the subscribe permission, the event listener gets in paused state, pausing the delivery of events to the consumer. The status of the subscription can be tracked in the Real-Time Hub. To discover the status of the subscription, follow these steps:
- In Microsoft Fabric, select Real-Time on the left navigation bar.
- Select the Fabric events page or the Azure events page.
- Select the event group that you're interested in to see all the consumers for this event group.
- The Status column shows Active/Paused status for each of the consumers for the events.
- Select View details from the actions to see the detailed error message that explains the exact reason for the Paused state.
Handle paused subscriptions
To address paused subscriptions, you need to delete and recreate the subscription with a new user that has sufficient subscribe permission. This ensures that the subscription has a new owner with sufficient permissions.
Subscribe permissions
The following list explores the needed permissions to subscribe to every event group.
Azure blob storage events
To subscribe to Azure Blob Storage events in Microsoft Fabric, users need Azure EventGrid Contributor role in the Azure subscription, resource group, or Azure Data Lake Storage Gen2 account.
In Fabric, an Eventstream is created as the source of the Azure blob storage events in Fabric. A user needs to have at least Contributor role on the Fabric workspace where that Eventstream is created.
Job events
To subscribe to Job events in Microsoft Fabric, users need Read permission on the source item.
OneLake events
To subscribe to OneLake events in Microsoft Fabric, users need SubscribeOneLakeEvents permission on the source item.
Workspace item events
To subscribe to workspace item events in Microsoft Fabric, users need Read permission at workspace level or TenantAdmin at tenant level.
Related content
For more information, see the following articles: