Answer-first summary for fast verification
Answer: Managed identity
The question asks for the method to authorize access from an Azure Machine Learning workspace to an Azure Data Lake Storage Gen2 account when connecting it as a datastore. Managed identity is the optimal choice because it provides a secure, credential-free authentication mechanism for Azure services to access other Azure resources. It eliminates the need to manage secrets (like account keys or SAS tokens) and is recommended for service-to-service authentication within Azure. The community discussion shows strong support for managed identity (option C), with multiple comments referencing Microsoft documentation that confirms its use for identity-based service authentication in Azure Machine Learning. While service principal (option A) is technically possible and has some support in the discussion, managed identity is more secure and easier to manage, as it's automatically handled by Azure. SAS token (option B) and account key (option D) are less secure and not recommended for persistent service-to-service access, as they require manual credential management and rotation.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
You have an Azure Machine Learning workspace and are connecting an Azure Data Lake Storage Gen2 account to the workspace as a datastore. You need to authorize the workspace to access the storage account.
What should you use?
A
Service principal
B
SAS token
C
Managed identity
D
Account key
No comments yet.