Answer-first summary for fast verification
Answer: Managed identity
The question asks for the method to authorize access from an Azure Machine Learning workspace to an Azure Data Lake Storage Gen2 account when connecting it as a datastore. Managed identity is the optimal choice because it provides a secure, credential-free authentication mechanism for Azure services to access other Azure resources. It eliminates the need to manage secrets like account keys or SAS tokens, which can be a security risk. The community discussion shows strong support for managed identity, with multiple comments referencing official Microsoft documentation that recommends managed identity for service-to-service authentication in Azure Machine Learning scenarios. While service principal can technically work, managed identity is the modern, recommended approach for Azure service authentication as it's more secure and easier to manage. Account key and SAS token are less suitable as they require credential management and are generally not recommended for service-to-service authentication in production scenarios.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
You have an Azure Machine Learning workspace and are connecting an Azure Data Lake Storage Gen2 account to the workspace as a datastore. You need to authorize the workspace to access the storage account.
What should you use?
A
Service principal
B
SAS token
C
Managed identity
D
Account key
No comments yet.