You are designing an Azure Synapse solution that will provide a query interface for data stored in an Azure Storage account. The storage account is configured to be accessible only from a virtual network.

What authentication mechanism should you recommend to ensure the solution can access the source data?