In general, there are two ways of securing access to your Storage Accounts:
- Azure AD with RBAC
- SAS tokens
Additionally, blobs can be accessed publicly (of course, only if you decide to do so). Depending on your needs, one option or another may cover your requirements—this, of course, depends on the characteristics of your application. The following is the difference between those two methods of securing Azure Storage:
- RBAC: This method is used to secure management operations on your accounts. You can restrict access to specific features of a service to only a specific group defined in Azure AD. However, you are unable to use this method to secure a blob or a table (although you can do it indirectly by securing access ...