![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 99%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKS%3C/text%3E%3C/svg%3E)
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
3,358 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 31%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVK%3C/text%3E%3C/svg%3E)
Welcome to Microsoft Q&A, thanks for posting your query.
Public access and anonymous access are related concepts in Azure Storage, but they have distinct meanings:
- Public Access: This refers to the ability to access data in a storage account without needing authorization. When public access is enabled for a container, it can be set to allow public read access for blobs only or for both the container and its blobs. This means that users can access the blobs without needing to authenticate, depending on the configuration.
- Anonymous Access: This is a specific type of public access where users can access data without any form of authentication or authorization. In Azure Storage, anonymous access is typically disabled by default, and it must be explicitly enabled at both the storage account and container levels.
When a container is configured for anonymous access, any client can read data in that container. Anonymous access presents a potential security risk, so if your scenario does not require it, we recommend that you remediate anonymous access for the storage account.
The Modify-SABlobPublicAccess command is used to change the public access level of a storage account. If anonymous access is allowed, this command can set the access level to allow public read access for blobs or for the entire container. However, if anonymous access is disallowed, the command will not permit any public access to the blobs or containers.
while both public and anonymous access involve accessing data without authorization, public access can be configured to allow certain levels of access, whereas anonymous access specifically refers to access without any authentication. In simple terms, the difference between public and anonymous access is that public access allows anyone to access the container or blob, while anonymous access requires users to have valid Azure credentials to access the container or blob.
Remediate anonymous read access to blob data (Azure Resource Manager deployments) - Azure Storage | Microsoft Learn
https://learn.microsoft.com/en-us/azure/storage/blobs/anonymous-read-access-configure?tabs=portal#about-anonymous-read-access
Hope the above answer helps! Please let us know do you have any further queries.
Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.