Answer-first summary for fast verification
Answer: a database scoped credential
## Detailed Explanation To create an external table in Azure Synapse Analytics that accesses data from Azure Storage with account key authentication, the proper sequence of objects must be created. The correct first step is creating a **database scoped credential**. ### Why Option B (Database Scoped Credential) is Correct: 1. **Authentication Requirement**: The CSV file in storage1 requires an account key for access. A database scoped credential is specifically designed to store authentication information securely, including storage account keys. 2. **Prerequisite for External Data Source**: When creating an external data source that connects to Azure Storage with account key authentication, you must reference a pre-existing database scoped credential that contains the storage account key. 3. **Security Best Practice**: Database scoped credentials provide a secure way to store authentication information without exposing sensitive data in the external data source definition. 4. **Required Sequence**: The correct creation order is: - Database scoped credential (stores the storage account key) - External data source (references the credential) - External table (references the external data source) ### Why Other Options Are Incorrect: - **Option A (Database Role)**: Database roles are used for permission management and access control within the database, not for storing external authentication credentials. - **Option C (Database View)**: Views are used to present data from existing tables in a customized format and have no relationship to external data source authentication. - **Option D (External File Format)**: While external file formats are required for external tables to define the structure of files (like CSV format), they are not the first requirement when authentication credentials are needed. ### Technical Implementation: The database scoped credential would be created using syntax similar to: ```sql CREATE DATABASE SCOPED CREDENTIAL StorageCredential WITH IDENTITY = 'SHARED ACCESS SIGNATURE', SECRET = '<storage-account-key>'; ``` This credential would then be referenced when creating the external data source, enabling secure access to the storage account.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
You have an Azure subscription containing a storage account named 'storage1' and an Azure Synapse Analytics dedicated SQL pool. The 'storage1' account holds a CSV file that requires an account key for access. You intend to read the file's contents using an external table and need to create an external data source for this purpose.
What must you create first?
A
a database role
B
a database scoped credential
C
a database view
D
an external file format
No comments yet.