Hi @AzureSDE ,
I have tested this with user-assigned managed identity for a published web application and it works only when you provide add this user assigned managed identity to secondary server (using CREATE USER [appserviceuser] FROM EXTERNAL PROVIDER
) during the failover time.
So, basically you need to provide access to your failover server to make this work.
This even works if the user managed identity resides in a different resource group than the secondary SQL instance.
Please let me know if you have any questions.
Thanks
Saurabh
----------
Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.