question

ramprasath-5119 avatar image
0 Votes"
ramprasath-5119 asked OuryBa-MSFT commented

Cannot able create user on Azure Synapsis (Datawhare house database) with AAD service principle

Cannot able create user on Azure Synapsis (Datawhare house database) with AAD service principle.

Error:
Msg 33134, Level 16, State 1, Line 1
Principal 'XXX' could not be resolved. Error message: ''

azure-sql-databaseazure-synapse-analytics
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

AlbertoMorillo avatar image
1 Vote"
AlbertoMorillo answered OuryBa-MSFT commented

Please, follow these steps to enable service principals to create Azure AD users.



· 3
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@ramprasath-5119 Please do not forget to mark as accept answer if the steps shared by @AlbertoMorillo helped.

Regards,
Oury

0 Votes 0 ·

I tried but did not work still the same error. I'm trying to create user from AAD security group and it has reader permission on portal. I'm doing it on Azrue SQL data ware house database.

Syntax:

CREATE USER [Security Group name] FROM EXTERNAL PROVIDER


Error:
Msg 33134, Level 16, State 1, Line 1
Principal 'XXX' could not be resolved. Error message: ''

0 Votes 0 ·

Hi @ramprasath-5119

Azure AD users and service principals (Azure AD applications) that are members of more than 2048 Azure AD security groups aren't supported to login into the database in SQL Database, Managed Instance, or Azure Synapse.

DisplayName of Azure AD object for Azure AD Groups and Azure AD Applications. If you had the Nurses security group, you would use:

CREATE USER [Nurses] FROM EXTERNAL PROVIDER.

Regards,
Oury

0 Votes 0 ·