Configuring Azure Data Lake Storage Gen2 Authentication: Resources for Secure Access

Correct Answer: D.

Travis, as a Data Analyst at Adatum Inc., is configuring Azure Data Lake Storage (ADLS) Gen2 account for authentication to access data in Azure Databricks securely. To achieve this, he can use various authentication resources available in Azure, including:

A. Client ID and Client Secret: This authentication method involves using Azure Active Directory (Azure AD) application's client ID and client secret to authenticate the ADLS Gen2 account. The client ID identifies the Azure AD application, while the client secret is a password used to authenticate the application. The client ID and secret are used to generate a token that can be used to access the ADLS Gen2 account.

B. Azure Blob File System Driver: The Azure Blob File System Driver is another authentication resource that Travis can use. It allows Azure Databricks to mount the ADLS Gen2 account as a filesystem and access its contents. This method eliminates the need to use client ID and client secret authentication.

C. App ID: The app ID is a unique identifier for an Azure AD application. Travis can use the app ID to authenticate the ADLS Gen2 account, and it can be used in conjunction with the client ID and client secret authentication method.

D. OAuth 2.0 with Azure AD App Service Principal: This authentication method involves creating a service principal, which is an identity that can be used to access resources, and using OAuth 2.0 protocol to authenticate the service principal. Travis can use this method to authenticate the ADLS Gen2 account by granting the service principal access to the account.

In conclusion, Travis has multiple options for ADLS Gen2 authentication, including client ID and client secret, Azure Blob File System Driver, app ID, and OAuth 2.0 with Azure AD App Service Principal. The choice of authentication resource depends on the specific use case, security requirements, and organizational policies.