I use Microsoft Authenticator / Interactive OAuth2 node to access Azure SQL and Blob storage.
This works fine in interactive mode. When I click the login button in the dialogue box, the browser opens, and authentication succeeds.
I want to deploy this to our Hub server. What is the best practice for having credentials saved or some sort of trusted account that can be set up for automated execution?
Thanks,
Marc.
Hello @nbt1032b,
I believe if you want to store credentials (I assume you mean where you do not need to authenticate to run the workflow every time), you would want to use the credentials config node and save the password in the config → which you can then pass this to your authenticator and assign the flow variable to necessary fields. Though if you do this, I would make sure to only allow trusted sources to access the hub instance which is hosting the workflow.
Or the more secure way would be to use secrets and a ‘Secrets Retreiver’ node to store and grab your access credentials while your workflow is on the hub.
https://docs.knime.com/latest/business_hub_secrets_guide/index.html#using-secrets
Hope this helps,
TL
2 Likes