Your external object store must be configured to allow Advanced SQL Engine access.
When you configure external storage, you set the credentials to your external object store. Those credentials are used in SQL statements by Advanced SQL Engine. The supported credentials correspond to the values shown in the following table. These credentials are used for USER and PASSWORD by the CREATE AUTHORIZATION command and for ACCESS_ID and ACCESS_KEY by READ_NOS and WRITE_NOS.
| System/Scheme | USER | PASSWORD |
|---|---|---|
| AWS | Access Key ID | Access Key Secret |
| Azure / Shared Key | Storage Account Name | Storage Account Key |
| Azure Shared Access Signature (SAS) | Storage Account Name | Account SAS Token |
| Google Cloud (S3 interop mode) | Access Key ID | Access Key Secret |
| Google Cloud (native) | Client Email | Private Key |
| On-premises object stores | Access Key ID | Access Key Secret |
| Public access object stores | <empty string> Enclose the empty string in single straight quotes: USER '' |
<empty string> Enclose the empty string in single straight quotes: PASSWORD '' |
To see examples of supported credentials, see Variable Substitutions for Examples.