![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 13%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVJ%3C/text%3E%3C/svg%3E)
Microsoft Identity Manager
A family of Microsoft products that manage a user's digital identity using identity synchronization, certificate management, and user provisioning.
707 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 65%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECB%3C/text%3E%3C/svg%3E)
Hi @Vinit Joshi
Greetings & Welcome to Microsoft Q&A forum! Thanks for posting your query!
Switching to a System-Assigned Managed Identity for accessing Azure Blob Storage in Azure Synapse Analytics is a great way to enhance security. Here’s a step-by-step guide on how to configure and use the managed identity in your Synapse notebook:
- Enable System-Assigned Managed Identity Ensure that the system-assigned managed identity is enabled for your Synapse workspace.
- Assign Role to Managed Identity Assign the appropriate role (e.g., Storage Blob Data Contributor) to the managed identity for the Blob Storage account. Navigate to your Blob Storage account in the Azure Portal. Go to Access Control (IAM). Click on Add role assignment. Select the role (e.g., Storage Blob Data Contributor). Assign the role to the managed identity of your Synapse workspace.
- Access Blob Storage in Synapse Notebook Use the Azure SDK for Python (azure-identity and azure-storage-blob libraries) to access Blob Storage with the managed identity. You can install these libraries if they are not already available in your Synapse environment.
# Install the required packages
!pip install azure-identity azure-storage-blob
# Import necessary libraries
from azure.identity import ManagedIdentityCredential
from azure.storage.blob import BlobServiceClient
# Create a managed identity credential object
credential = ManagedIdentityCredential()
# Create a BlobServiceClient object using the managed identity credential
blob_service_client = BlobServiceClient(account_url="https://<your-storage-account-name>.blob.core.windows.net", credential=credential)
# Specify the name of the container and the blob to access
container_name = "<your-container-name>"
blob_name = "<your-blob-name>"
# Get the container client using the get_container_client method of the BlobServiceClient object
container_client = blob_service_client.get_container_client(container_name)
# Get the blob client using the get_blob_client method of the container client object
blob_client = container_client.get_blob_client(blob_name)
# Download the content of the blob using the download_blob method of the blob client object and read it using the readall method
downloaded_blob = blob_client.download_blob().readall()
# Print the content of the blob
print(downloaded_blob)
By following these steps, you should be able to securely access Azure Blob Storage using a system-assigned managed identity in your Azure Synapse Analytics notebooks.
For reference, please refer to the following documentations:
https://learn.microsoft.com/en-us/azure/storage/blobs/storage-blob-download-python
I hope this information helps. Please do let us know if you have any further queries.
If this answers your query, do click `Accept Answer` and `Yes` for was this answer helpful. And, if you have any further query do let us know.