Thank you, @McCartneyAaron-0857 !
Edit: I'm glad that you were able to resolve your issue and thank you for posting your solution so that others experiencing the same thing can easily reference this! Since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others ", I'll repost your solution in case you'd like to "Accept " the answer.
Why am I seeing an authorization error when attempting to access a blob using a Service Principal Name (SPN)?
Edit: Solution provided by McCartneyAaron-0857:
I was able to work with the team that assigns permissions to our SPN to get this working. We updated the automation to pull the keys from the storage account:
StorageManagementClient.storage_accounts.list_keys()
... needed to add the "Storage Account Key Operator Service Role" permission. We then use these keys to get a BlobServiceClient. Using the BlobServiceClient to get a ContainerClient, which allowed us to the get blob metadata we were looking for.
I hope this has been helpful! Your feedback is important so please take a moment to accept answers. If you still have questions, please let us know what is needed in the comments so the question can be answered. Thank you for helping to improve Microsoft Q&A!