Exam DP203 Serverless SQL Pool Authentication: Difference between revisions
No edit summary |
No edit summary |
||
| Line 5: | Line 5: | ||
* Microsoft Entra authentication. Global reach within Azure. | * Microsoft Entra authentication. Global reach within Azure. | ||
'''Authorization''' refers to what a user can do within a serverless SQL pool database and is controlled by your user account's database role memberships and object-level permissions. | '''Authorization''' refers to what a user can do within a serverless SQL pool database and is controlled by your user account's database role memberships and object-level permissions. | ||
== Access to storage accounts == | |||
If a user of either type (above) needs to access files in Azure Storage, or Azure Gen2, they must have one of the following permissions: | |||
# Anonymous access | |||
# Shared access signature (SAS) | |||
# Managed Identity. | |||
# User Identity | |||
Revision as of 23:19, 16 November 2024
Serverless SQL Pool Authentication
Two types of authentication are supported:
- SQL Authentication (username and password). Only within the Serverless SQL Pool.
- Microsoft Entra authentication. Global reach within Azure.
Authorization refers to what a user can do within a serverless SQL pool database and is controlled by your user account's database role memberships and object-level permissions.
Access to storage accounts
If a user of either type (above) needs to access files in Azure Storage, or Azure Gen2, they must have one of the following permissions:
- Anonymous access
- Shared access signature (SAS)
- Managed Identity.
- User Identity