You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/t-sql/statements/copy-into-transact-sql.md
+8-10Lines changed: 8 additions & 10 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -5,7 +5,7 @@ description: Use the COPY statement in Azure Synapse Analytics and Warehouse in
5
5
author: WilliamDAssafMSFT
6
6
ms.author: wiassaf
7
7
ms.reviewer: procha, mikeray, fresantos
8
-
ms.date: 10/15/2025
8
+
ms.date: 11/10/2025
9
9
ms.service: sql
10
10
ms.subservice: t-sql
11
11
ms.topic: reference
@@ -680,23 +680,21 @@ To access files on Azure Data Lake Storage (ADLS) Gen2 and Azure Blob Storage lo
680
680
681
681
#### *CREDENTIAL (IDENTITY = '', SECRET = '')*
682
682
683
-
*CREDENTIAL* specifies the authentication mechanism to access the external storage account. On [!INCLUDE [fabric-dw](../../includes/fabric-dw.md)] in [!INCLUDE [fabric](../../includes/fabric.md)], the only supported authentication mechanisms are Shared Access Signature (SAS) and Storage Account Key (SAK).
683
+
*CREDENTIAL* specifies the authentication mechanism to access the external storage account.
684
684
685
-
The user's EntraID authentication is default. No credential needs to be specified. COPY INTO using OneLake as source only supports EntraID authentication.
685
+
In Fabric Data Warehouse:
686
+
- For private storage accounts, the only supported authentication mechanisms are Shared Access Signature (SAS) and Storage Account Key (SAK).
687
+
- For public storage accounts, Microsoft Entra ID authentication is the only supported authentication method. When using a public storage account, CREDENTIAL does not need to be specified. By default the executing user's Entra ID is used.
686
688
687
-
> [!NOTE]
688
-
> When using a public storage account, CREDENTIAL does not need to be specified. By default the executing user's Entra ID is used.
689
+
The user's EntraID authentication is default. No credential needs to be specified. COPY INTO using OneLake as source only supports EntraID authentication.
689
690
690
691
- Authenticating with Shared Access Signature (SAS)
691
-
692
692
-*IDENTITY: A constant with a value of 'Shared Access Signature'*
693
693
-*SECRET: The*[*shared access signature*](/azure/storage/common/storage-sas-overview)*provides delegated access to resources in your storage account.*
694
-
- Minimum permissions required: READ and LIST
695
-
694
+
- Minimum permissions required: READ and LIST
696
695
- Authenticating with Storage Account Key
697
-
698
696
-*IDENTITY: A constant with a value of 'Storage Account Key'*
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments