![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 54%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESD%3C/text%3E%3C/svg%3E)
Azure SQL Database
An Azure relational database service.
5,296 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 4%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
We had a similar requirement, where it was tedious for us to maintain the users.
Developers - Need RW access to few set of tables
Analysts - R access on all tables
Others - R access to only few tables.
The initial setup was done manually.
We created several roles, each with its own set of rules for accessing tables and views.
We also created a few security groups and added these groups as users in Azure SQL using this command. This is in the link that @ShaktiSingh-MSFT provided.
CREATE USER [<Microsoft_Entra_principal_name>] FROM EXTERNAL PROVIDER;
When a new hire joins, you don't need to log in to the Azure SQL database to grant access. Instead you can add the user directly to the appropriate group.
If they don't need access, remove that particular person from the group, they cannot login to Azure SQL.
