Azure
diff --git a/‎src/index.json‎
Lines changed: 97 additions & 0 deletions b/‎src/index.json‎
Lines changed: 97 additions & 0 deletions
diff --git a/‎src/quantum/HISTORY.rst‎
Lines changed: 5 additions & 0 deletions b/‎src/quantum/HISTORY.rst‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎src/quantum/azext_quantum/operations/templates/create-workspace-and-assign-role.json‎
Lines changed: 30 additions & 5 deletions b/‎src/quantum/azext_quantum/operations/templates/create-workspace-and-assign-role.json‎
Lines changed: 30 additions & 5 deletions
diff --git a/‎src/quantum/azext_quantum/operations/workspace.py‎
Lines changed: 7 additions & 1 deletion b/‎src/quantum/azext_quantum/operations/workspace.py‎
Lines changed: 7 additions & 1 deletion
@@ -95906,6 +95906,49 @@
                     "version": "1.0.0b12"
                 },
                 "sha256Digest": "f6d8c1be9bb5176ff62582940f621bc547246287d41f4ac49e29a4a515c5db06"
+            },
+            {
+                "downloadUrl": "https://azcliprod.blob.core.windows.net/cli-extensions/quantum-1.0.0b13-py3-none-any.whl",
+                "filename": "quantum-1.0.0b13-py3-none-any.whl",
+                "metadata": {
+                    "azext.isPreview": true,
+                    "azext.minCliCoreVersion": "2.73.0",
+                    "classifiers": [
+                        "Development Status :: 4 - Beta",
+                        "Intended Audience :: Developers",
+                        "Intended Audience :: System Administrators",
+                        "Programming Language :: Python",
+                        "Programming Language :: Python :: 3",
+                        "Programming Language :: Python :: 3.10",
+                        "Programming Language :: Python :: 3.11",
+                        "Programming Language :: Python :: 3.12",
+                        "License :: OSI Approved :: MIT License"
+                    ],
+                    "extensions": {
+                        "python.details": {
+                            "contacts": [
+                                {
+                                    "email": "que-contacts@microsoft.com",
+                                    "name": "Microsoft Corporation, Quantum Team",
+                                    "role": "author"
+                                }
+                            ],
+                            "document_names": {
+                                "description": "DESCRIPTION.rst"
+                            },
+                            "project_urls": {
+                                "Home": "https://github.com/Azure/azure-cli-extensions/tree/main/src/quantum"
+                            }
+                        }
+                    },
+                    "generator": "bdist_wheel (0.30.0)",
+                    "license": "MIT",
+                    "metadata_version": "2.0",
+                    "name": "quantum",
+                    "summary": "Microsoft Azure Command-Line Tools Quantum Extension",
+                    "version": "1.0.0b13"
+                },
+                "sha256Digest": "ccdcaf62fb4963602001252832f37f7025d620e27577724443b1bfb6ec95fe8e"
             }
         ],
         "qumulo": [
@@ -107427,6 +107470,60 @@
                     "version": "2.0.6"
                 },
                 "sha256Digest": "3d2206b4e6bdd56c69cc509ab99e5de6dc7f66d091b0185b7a3b557d8dc182cb"
+            },
+            {
+                "downloadUrl": "https://azcliprod.blob.core.windows.net/cli-extensions/ssh-2.0.7-py3-none-any.whl",
+                "filename": "ssh-2.0.7-py3-none-any.whl",
+                "metadata": {
+                    "azext.isPreview": false,
+                    "azext.minCliCoreVersion": "2.45.0",
+                    "classifiers": [
+                        "Development Status :: 4 - Beta",
+                        "Intended Audience :: Developers",
+                        "Intended Audience :: System Administrators",
+                        "Programming Language :: Python",
+                        "Programming Language :: Python :: 3",
+                        "Programming Language :: Python :: 3.6",
+                        "Programming Language :: Python :: 3.7",
+                        "Programming Language :: Python :: 3.8",
+                        "License :: OSI Approved :: MIT License"
+                    ],
+                    "extensions": {
+                        "python.details": {
+                            "contacts": [
+                                {
+                                    "email": "azpycli@microsoft.com",
+                                    "name": "Microsoft Corporation",
+                                    "role": "author"
+                                }
+                            ],
+                            "document_names": {
+                                "description": "DESCRIPTION.rst"
+                            },
+                            "project_urls": {
+                                "Home": "https://github.com/Azure/azure-cli-extensions/tree/main/src/ssh"
+                            }
+                        }
+                    },
+                    "extras": [],
+                    "generator": "bdist_wheel (0.30.0)",
+                    "license": "MIT",
+                    "metadata_version": "2.0",
+                    "name": "ssh",
+                    "run_requires": [
+                        {
+                            "requires": [
+                                "oras (==0.1.30)",
+                                "oras==0.1.30",
+                                "oschmod (==0.3.12)",
+                                "oschmod==0.3.12"
+                            ]
+                        }
+                    ],
+                    "summary": "SSH into Azure VMs using RBAC and AAD OpenSSH Certificates",
+                    "version": "2.0.7"
+                },
+                "sha256Digest": "1ff0b08ad96d3c507a13614af47b031048e69f634e0fdfcee0139d0654500306"
             }
         ],
         "stack-hci": [
 
@@ -3,6 +3,11 @@
 Release History
 ===============
 
+1.0.0b13
++++++++++++++++
+* Updated workspace create command to support job submissions with disabled access keys on linked storage account
+* Updated new storage account to be v2 in workspace creation because of the retirement of General-Purpose v1 (GPv1) storage accounts on October 13, 2026
+
 1.0.0b12
 +++++++++++++++
 * Added support for Data Plane v2 including specifying priority parameter as part of job params when submitting a job
 
@@ -62,14 +62,24 @@
             "metadata": {
                 "description": "Deployment name for role assignment operation"
             }
+        },
+        "storageAccountAllowSharedKeyAccess": {
+            "type": "bool",
+            "defaultValue": false,
+            "metadata": {
+                "description": "Whether to allow shared key access on the storage account. Defaults to false (secure) for new accounts; existing accounts should pass their current value to avoid breaking changes."
+            }
         }
     },
     "functions": [],
-    "variables": {},
+    "variables": {
+        "storageAccountContributorRoleId": "17d1049b-9a84-46fb-8f53-869881c3d3ab",
+        "storageBlobDataContributorRoleId": "ba92f5b4-2d11-453d-a403-e96b0029c9fe"
+    },
     "resources": [
         {
             "type": "Microsoft.Quantum/workspaces",
-            "apiVersion": "2019-11-04-preview",
+            "apiVersion": "2025-12-15-preview",
             "name": "[parameters('quantumWorkspaceName')]",
             "location": "[parameters('location')]",
             "tags": "[parameters('tags')]",
@@ -105,6 +115,7 @@
                             "kind": "[parameters('storageAccountKind')]",
                             "properties": {
                                 "allowBlobPublicAccess": false,
+                                "allowSharedKeyAccess": "[parameters('storageAccountAllowSharedKeyAccess')]",
                                 "minimumTlsVersion": "TLS1_2"
                             },
                             "resources": [
@@ -145,12 +156,26 @@
                         },
                         {
                             "apiVersion": "2020-04-01-preview",
-                            "name": "[concat(parameters('storageAccountName'), '/Microsoft.Authorization/', guid(reference(concat('Microsoft.Quantum/Workspaces/', parameters('quantumWorkspaceName')), '2019-11-04-preview', 'Full').identity.principalId))]",
+                            "name": "[concat(parameters('storageAccountName'), '/Microsoft.Authorization/', guid(reference(concat('Microsoft.Quantum/Workspaces/', parameters('quantumWorkspaceName')), '2025-12-15-preview', 'Full').identity.principalId, variables('storageAccountContributorRoleId')))]",
+                            "type": "Microsoft.Storage/storageAccounts/providers/roleAssignments",
+                            "location": "[parameters('storageAccountLocation')]",
+                            "properties": {
+                                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', variables('storageAccountContributorRoleId'))]",
+                                "principalId": "[reference(concat('Microsoft.Quantum/Workspaces/', parameters('quantumWorkspaceName')), '2025-12-15-preview', 'Full').identity.principalId]",
+                                "principalType": "ServicePrincipal"
+                            },
+                            "dependsOn": [
+                                "[parameters('storageAccountId')]"
+                            ]
+                        },
+                        {
+                            "apiVersion": "2020-04-01-preview",
+                            "name": "[concat(parameters('storageAccountName'), '/Microsoft.Authorization/', guid(reference(concat('Microsoft.Quantum/Workspaces/', parameters('quantumWorkspaceName')), '2025-12-15-preview', 'Full').identity.principalId, variables('storageBlobDataContributorRoleId')))]",
                             "type": "Microsoft.Storage/storageAccounts/providers/roleAssignments",
                             "location": "[parameters('storageAccountLocation')]",
                             "properties": {
-                                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', '17d1049b-9a84-46fb-8f53-869881c3d3ab')]",
-                                "principalId": "[reference(concat('Microsoft.Quantum/Workspaces/', parameters('quantumWorkspaceName')), '2019-11-04-preview', 'Full').identity.principalId]",
+                                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', variables('storageBlobDataContributorRoleId'))]",
+                                "principalId": "[reference(concat('Microsoft.Quantum/Workspaces/', parameters('quantumWorkspaceName')), '2025-12-15-preview', 'Full').identity.principalId]",
                                 "principalType": "ServicePrincipal"
                             },
                             "dependsOn": [
 
@@ -31,7 +31,7 @@
 DEFAULT_WORKSPACE_LOCATION = 'westus'
 DEFAULT_STORAGE_SKU = 'Standard_LRS'
 DEFAULT_STORAGE_SKU_TIER = 'Standard'
-DEFAULT_STORAGE_KIND = 'Storage'
+DEFAULT_STORAGE_KIND = 'StorageV2'
 SUPPORTED_STORAGE_SKU_TIERS = ['Standard']
 SUPPORTED_STORAGE_KINDS = ['Storage', 'StorageV2']
 DEPLOYMENT_NAME_PREFIX = 'Microsoft.AzureQuantum-'
@@ -240,6 +240,7 @@ def create(cmd, resource_group_name, workspace_name, location, storage_account,
     storage_account_sku_tier = DEFAULT_STORAGE_SKU_TIER
     storage_account_kind = DEFAULT_STORAGE_KIND
     storage_account_location = location
+    storage_account_allow_shared_key_access = False  # Secure default for new accounts
 
     # Look for info on existing storage account
     storage_account_list = list_storage_accounts(cmd, resource_group_name)
@@ -250,6 +251,10 @@ def create(cmd, resource_group_name, workspace_name, location, storage_account,
                 storage_account_sku_tier = storage_account_info.sku.tier
                 storage_account_kind = storage_account_info.kind
                 storage_account_location = storage_account_info.location
+                # Preserve the existing account's setting to avoid breaking customers
+                # who rely on shared-key auth/connection strings for that account.
+                if storage_account_info.allow_shared_key_access is not None:
+                    storage_account_allow_shared_key_access = storage_account_info.allow_shared_key_access
                 break
 
     # Validate the storage account SKU tier and kind
@@ -266,6 +271,7 @@ def create(cmd, resource_group_name, workspace_name, location, storage_account,
         'storageAccountLocation': storage_account_location,
         'storageAccountSku': storage_account_sku,
         'storageAccountKind': storage_account_kind,
+        'storageAccountAllowSharedKeyAccess': storage_account_allow_shared_key_access,
         'storageAccountDeploymentName': "Microsoft.StorageAccount-" + time.strftime("%d-%b-%Y-%H-%M-%S", time.gmtime())
     }
     parameters = {k: {'value': v} for k, v in parameters.items()}