Yes, even when using a linked service, you need to provide the SAS URI in the mount command. The linked service only provides the authentication details, but the mount command still requires the complete URI to access the storage account.
The difference between using a linked service and directly pasting the SAS token is that using a linked service allows you to manage the authentication details in a centralized location. This means that you can update the authentication details in the linked service, and all the pipelines and notebooks that use that linked service will automatically use the updated details.
If you want to keep your SAS tokens in Key Vault, you can use Azure Key Vault-backed secrets to store the SAS token, and then reference the secret in the linked service. This way, you can keep your SAS tokens secure and still use them in your pipelines and notebooks.
Here's an example of how to use a Key Vault-backed secret in a linked service:
- Create a secret in Key Vault with the SAS token value.
- Create a Key Vault-linked service in Azure Data Factory.
- In the Key Vault-linked service, reference the secret using the syntax
<secret-uri>with the URI of the secret in Key Vault.
- Use the Key Vault-linked service in your pipelines and notebooks.
I hope this helps! Let me know if you have any further questions.