How to set up ACLs for containers in Azure Data Lake Storage Gen2?

I have created containers inside of Data Lake Gen2 and I would like to grand privileges to a service principal to access the data within the containers.
I want to use Terraform for the same task as discribed here: Use the Azure portal to manage ACLs in Azure Data Lake Storage Gen2 - Azure Storage | Microsoft Learn.

I expect something like this:

resource “azurerm_key_vault_access_policy” “factory” {
key_vault_id =
tenant_id = data.azurerm_client_config.current.tenant_id
object_id = data.azuread_service_principal.ndfactory.object_id

key_permissions = [“Get”, “List”]
secret_permissions = [“Get”, “List”]
certificate_permissions = [“Get”, “List”]

but for storage containers.

I know nothing about Azure Data Lake Gen2, but pretty much all of these “How do I configure X with Terraform?” questions can be approached in the same way:

  1. Find the provider - you already know it’s azurerm
  2. Look through the provider’s documentation for relevant resources - happily in this case “data lake gen2” is a rather distinct search term, so it should be fairly easy to narrow things down.
  3. Look through the documentation for suitable resources, to confirm whether arguments which configure what you want exist.

Hopefully in this way you can find what you need.