This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 7.000000000000001%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPC%3C/text%3E%3C/svg%3E)
I would like to know if it is possible to access a blob storage by a container running in Pivotal Cloud Foundry in Azure using a Managed Identity , say system assigned managed identity, or i need to use a Service Principal Object.
Earlier we were using SAS by coding the URL in the code to access the Blob Enpoint.
But we would like to use Azure RBAC to do authentication of our app running inside a container. So what is the best way to achieve this
We would like to use the "Blob Storage Reader" role for the app. So can Managed Identity be leveraged in this case, say user assigned or system assigned, and if yes, how to go about it? Or using Service Principal is the only option here, like register the app first in Azure AD and get an access token and then use that token for authorization like it is mentioned in this URI
https://learn.microsoft.com/en-us/azure/storage/common/storage-auth-aad-app?tabs=dotnet
@Anonymous
It appears your question was answered on StackOverflow. If this doesn't answer your question or you need further assistance please let us know!