/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PublicSymptom
You want to establish a connection between Datasphere hosted on AWS to Azure data lake, but connection status check failed for HTTP::OAuth2ClientCredentials. Possible causes of error: Detailed error message (forbidden).
Environment
SAP Datasphere
Reproducing the Issue
- Create a Microsoft Azure Data Lake Storage Gen2 connection in SAP Datasphere hosted on AWS.
- Attempt to validate the connection.
- Observe the error message: "Connection status check failed for HTTP::OAuth2ClientCredentials. Possible causes of error: Detailed error message (forbidden)."
Cause
Network settings in place for Azure ADLS Gen2 are limiting access from SAP Datasphere hosted on AWS. Currently, Azure ADLS Gen2 can be reached only through the internal network, private link, or peering.
Resolution
The access from SAP Datasphere hosted on AWS is currently unavailable. This is because Azure ADLS Gen2 can only be accessed through the internal network. Refer to the SAP Datasphere product roadmap for 2026, which plans to leverage SAP Cloud Connector to establish a tunnel into the Azure network. SAP Road Map Explorer
See Also
For SAP Notes, Community and SAP Help, we use the below:
- SAP Help - SAP Datasphere
- SAP Help - Preparing Connectivity for Connections
- SAP Note - 3405081 - Connection from SAP Datasphere to Azure storage services in same region which is restricted using firewall rules
- SAP Community - Datasphere to ADLS Gen2 Connectivity
Keywords
sap datasphere, aws, azure data lake, microsoft azure data lake store gen2, connection validation error, forbidden error, network restrictions, private link, ADLS2 , KBA , DS-DI-CON , Connections , Problem
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)