The Azure Table Storage connector is a Palantir-provided driver for Azure Table Storage.
To create a new Azure Table Storage source, follow the standard setup flow for Palantir-provided drivers, then use the sections below for Azure Table Storage-specific configuration and networking. For the complete property reference, see the official Azure Table Storage driver documentation ↗.
The properties below are mandatory or recommended.
| Property | Required? | Description | Default |
|---|---|---|---|
Account ↗ | Mandatory | The Windows Azure Storage account name. | — |
UseSSL ↗ | Mandatory | This field sets whether SSL is enabled. The default is true. | TRUE |
AccessKey ↗ | Recommended | The key for the storage account. | — |
AuthScheme ↗ | Recommended | The scheme used for authentication. Accepted entries are AccessKey, SharedAccessSignature, AzureAD, AzureServicePrincipal, AzureServicePrincipalCert and AzureMSI. The default value is SharedAccessSignature. | AccessKey |
Backend ↗ | Recommended | The backend where data is stored. | Storage |
InitiateOAuth ↗ | Recommended | Specifies the process for obtaining or refreshing the OAuth access token, which maintains user access while an authenticated, authorized user is working. | REFRESH |
OAuthClientId ↗ | Recommended | Specifies the client Id that was assigned when the custom OAuth application was created. (Also known as the consumer key.) This ID registers the custom application with the OAuth authorization server. | — |
OAuthClientSecret ↗ | Recommended | Specifies the client secret that was assigned when the custom OAuth application was created. (Also known as the consumer secret). This secret registers the custom application with the OAuth authorization server. | — |
Tables ↗ | Recommended | This property restricts the tables reported to a subset of the available tables. For example, Tables=TableA,TableB,TableC. | — |
The table below lists the domains that the source needs to be able to access in order to successfully run.
For each domain, add a corresponding egress policy. If the source is hosted on-premises and not directly reachable from Foundry, use an agent proxy egress policy instead; the agent host itself must also be able to reach the listed domains. See using an agent as a proxy for details.
| Domain | Required |
|---|---|
| <Account>.table.core.windows.net | If Backend=Storage (default) |
| <Account>.table.cosmosdb.azure.com | If Backend=CosmosDB |
| <Account> | If Backend=AzureStack or Emulator, specify the full URL in Account |
| login.microsoftonline.com | If AuthScheme=AzureAD AND AzureEnvironment=GLOBAL (default) |
| login.chinacloudapi.cn | If AuthScheme=AzureAD AND AzureEnvironment=CHINA |
| login.microsoftonline.us | If AuthScheme=AzureAD AND AzureEnvironment=USGOVT or USGOVTDOD |