Feedback: Cloud Storage Authentication

[lin-crl]

Page: https://cockroachlabs.com/docs/v25.3/cloud-storage-authentication.html

What is the reason for your feedback?

[ ] Missing the information I need

[ ] Too complicated

[x] Out of date

[ ] Something is broken

[ ] Other

Additional details

Simplify and follow best practices on Azure by recommending Workload Identity

• The current Azure related documents have 4 options - credential file, env variable, managed identity and workload identity. To new azure users it can be overwhelming.
• Deprecate support for Managed Identity as Azure Managed Identity uses pod identity add on https://github.com/Azure/aad-pod-identity which is now deprecated by Microsoft on 10/24/2022, and the project archived in Sept. 2023. Specifically "Pod identity is EoL and does not get security updates anymore."
• Recommend Workload Identity. CockroachDB 25.2+ supports Workload Identity and Workload Identity + Federated IAM is viewed as best practice on azure. Could we recommend Workload Identity or list it as the first option?

Jira issue: DOC-15400