Adding AAD external user to ADX database

Question

Adding AAD external user to ADX database

Elisa Piccin 0

I'm trying to give an AAD guest user permissions to access a database within an ADX free cluster

This query executes correctly, but he is not able to access the DB

.add database ['Test-db'] users ('aaduser=name.surname@acme.com') 'PoC user (AAD)';

I've tried also with the tenant id

.add database ['Test-db'] users ('aaduser=name.surname@acme.com';87101f8d-xxxx-xxxx-xxxx-xxxxxxxx') 'PoC user (AAD)';

and received this error: User's image

Can anyone help me in solving the issue?

Thanks,

Elisa

Answer 1

Sander van de Velde 22,296 MVP

Hello @Elisa Piccin ,

have you tried to add the user by hand in the Azure Portal?

Go to the Permissions pane of your database:

User's image

That user must be available in your AAD to be found.

If the response helped, do "Accept Answer". If it doesn't work, please let us know the progress. All community members with similar issues will benefit by doing so. Your contribution is highly appreciated.

Elisa Piccin 0 Reputation points

2023-08-28T19:51:36.5533333+00:00

Hi @Sander van de Velde and thanks for replying, unfortunately I do not have such a Permission pane since I'm using the free tier cluster. Additionally, I do not have direct access to Azure Active Directory in the Azure portal, since I'm working in the customer's tenant and I've been added to their AAD as a Guest users + owner of a specific resource group (that I'm using for Azure IoT hub and event hub, for example).
Sander van de Velde 22,296 Reputation points MVP

2023-08-30T15:24:13.56+00:00

Hello @Elisa Piccin,

Perfect, thanks for pushing this a bit further.

Answer 2

Elisa Piccin 0

@Sander van de Velde I was able to do it using the user AAD id, something like:

.add database ['database-name'] users ('aaduser=b40a91df-xxx-xxx-xxxx-xxxxxxxx;companyname.onmicrosoft.com') 'PoC user (AAD)'

Adding AAD external user to ADX database

2 answers

Activity