A shared access signature (SAS) is a URI that grants restricted access rights to Azure Storage. You can generate it at the storage account level and single-file level. As mentioned earlier, an account-level SAS can delegate access to multiple storage services, which are hosted within such as blobs, files, and queues.
Users can use a shared access signature URI to the customers who need a specified period of time to access the resources without informing the storage account name and access key.
You can go to the Shared access signature blade of your storage account to get this information (as shown in the following screenshot), where you can generate your SAS and configuration string: