Add an administrator to your Synapse workspace

In this tutorial, you'll learn how to add an administrator to your Synapse workspace. This user has full control over the workspace.

Overview

So far in the get started guide, we've focused on activities you do in the workspace. Because you created the workspace in STEP 1, you're an administrator of the Synapse workspace. Now, we'll make another user Ryan (ryan@contoso.com) an administrator. When we're done, Ryan will be able to do everything you can do in the workspace.

Azure role-based access control: Owner role for the workspace

  1. Open the Azure portal and open your Synapse workspace.

  2. On the left side, select Access control (IAM).

  3. Select Add > Add role assignment to open the Add role assignment page.

  4. Assign the following role. For detailed steps, see Assign Azure roles using the Azure portal.

    Setting Value
    Role Owner
    Assign access to USER
    Member ryan@contoso.com

    Add role assignment page in Azure portal.

  5. Select Save.

Synapse role-based access control: Synapse Administrator role for the workspace

Assign to ryan@contoso.com to the Synapse Administrator role on the workspace.

  1. Open your workspace in Synapse Studio.
  2. On the left side, select Manage to open the Manage hub.
  3. Under Security, select Access control.
  4. Select Add.
  5. Leave Scope set to Workspace.
  6. Add ryan@contoso.com to the Synapse Administrator role.
  7. Then select Apply.

Azure role-based access control: Role assignments on the workspace's primary storage account

  1. Open the workspace's primary storage account in the Azure portal.

  2. On the left side, select Access control (IAM).

  3. Select Add > Add role assignment to open the Add role assignment page.

  4. Assign the following role. For detailed steps, see Assign Azure roles using the Azure portal.

    Setting Value
    Role 1 Owner
    Role 2 Azure Storage Blob Data Contributor
    Assign access to USER
    Member ryan@contoso.com

    Add role assignment page in Azure portal.

Dedicated SQL pools: db_owner role

Assign ryan@contoso.com to the db_owner on each dedicated SQL pool in the workspace.

CREATE USER [ryan@contoso.com] FROM EXTERNAL PROVIDER; 
EXEC sp_addrolemember 'db_owner', 'ryan@contoso.com'

Next steps