Access to Azure containers must be defined using either Access Keys or Account Shared Access Signatures (SAS). A user with access key information has full control over the entire account. Alternatively, SAS can be defined on Containers, or on objects within containers, so it provides a more fine-grained authentication approach. NOS uses either type of authentication and does not need to know what type of secret is being supplied.
After the authentication is configured on Azure, the storage account name and key or SAS token can be used in CREATE AUTHORIZATION and READ_NOS statements.