Share via

Azure SQL db

AzureUser-9588 151 Reputation points
2021-10-06T11:54:02.573+00:00

With SQL Managed Instance supporting Azure AD server principals, you can create user accounts to authenticate to the SQL Managed Instance without requiring database users to be created as a contained database user. Can this be supported with Azure SQL Database as well in future? Any plans? Because, it is an overhead to create the local database users/contained database users for every new user.

Azure SQL Database
Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Oury Ba-MSFT 21,156 Reputation points Microsoft Employee Moderator
    2021-10-07T21:00:35.573+00:00

    @AzureUser-9588 Thank you for posting your question on Microsoft Q&A.

    "With SQL Managed Instance supporting Azure AD server principals, you can create user accounts to authenticate to the SQL Managed Instance without requiring database users to be created as a contained database user."

    Service principals is also supported in Azure SQL. This does not remove the requirement to create contained users. That is still needed.

    This only allow applications to create new user AAD users in the contained database which was not possible before in Azure SQL DB.

    Regards,
    Oury

    Was this answer helpful?

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.