Data Engineering on Microsoft Azure — Question 115

You have an Azure Blob storage account named storage1 and an Azure Synapse Analytics serverless SQL poo1 named Pool1.

From Pool1, you plan to run ad-hoc queries that target storage1.

You need to ensure that you can use shared access signature (SAS) authorization without defining a data source.

What should you create first?

Answer options

• A. a stored access policy
• B. a server-level credential
• C. a managed identity
• D. a database scoped credential

Correct answer: D

Explanation

Creating a database scoped credential is essential for enabling SAS authorization in Azure Synapse Analytics without defining a data source. The other options, such as a stored access policy and server-level credential, do not directly facilitate the required authorization method in this context, while a managed identity is not necessary for this specific scenario.