Azure SQL Database
An Azure relational database service.
5,161 questions
GitHub CI/CD cannot deploy to Azure SQL as it cannot add firewall rule due to "deny public network access" being set to Yes
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 53%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETO%3C/text%3E%3C/svg%3E)
Tinu Oommen
21
Reputation points
I have an Azure SQL server where I wish to deploy my database via dacpac using GitHub CI/CD. I am using the Azure SQL Deploy action with Service Principal for Azure login action
Due to policy restrictions on the client side, the "Deny Public Network Access" is always enabled and therefore while deploying even though the service principal login works, the GitHub action is unable to add the IP Address to the firewall rule.
We are using Self-Hosted GitHub runners. Is there any workaround to deploying the database via CI/CD under such circumstances where we cannot add the firewall rule to whitelist the agent/runners IP Address?
{count} votes
-
Oury Ba-MSFT 16,471 Reputation points Microsoft Employee2022-03-25T22:58:29.687+00:00 @Tinu Oommen Thank you for posting your question on Microsoft Q&A and for using Azure Services.
In my understanding you are not able to deploy your Azure SQL database via DACPAC using GitHub CI/CD. Please let me know if my understanding is not correct.
If the Azure SQL is configured to allow access to Azure Services, that should be enough. Doing that the GitHub actions will not try to create a new firewall rule and should work.
Regards,
Oury -
Oury Ba-MSFT 16,471 Reputation points Microsoft Employee
2022-04-01T23:05:06.827+00:00 @Tinu Oommen Could you please also check if the 2 pre-requisites are done.
sqlcmd in mssql-tools: https://learn.microsoft.com/sql/linux/sql-server-linux-setup-tools
sqlpackage: https://learn.microsoft.com/sql/tools/sqlpackage/sqlpackage-downloadRegards,
Oury -
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 92%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
TM 0 Reputation points2023-04-10T23:11:02.6433333+00:00 I am actually having same issue. My pipeline worked fine in Nov. 2022 with just Allow Azure Services, however I am getting this same error while trying to run it.
-
Oury Ba-MSFT 16,471 Reputation points Microsoft Employee
2023-05-01T17:23:26.7033333+00:00 Could you please open a new thread.
Sign in to comment