You have an Azure Blob storage account named storage1 and an Azure Synapse Analytics serverless SQL pool named Pool1. You plan to execute ad-hoc queries from Pool1 that target data in storage1. You need to enable the use of shared access signature (SAS) authorization without defining a data source. What should you create first?