Manage server administrators

Server administrators must be a valid user, service principal, or security group in the Azure Active Directory (Azure AD) for the tenant in which the server resides. You can use Analysis Services Admins for your server in Azure portal, Server Properties in SSMS, PowerShell, or REST API to manage server administrators.

When adding a security group, use obj:groupid@tenantid. Service principals are not supported in security groups added to the server administrator role.

To learn more about adding a service principal to the server admin role, see Add a service principal to the server administrator role.

If server firewall is enabled, server administrator client computer IP addresses must be included in a firewall rule. To learn more, see Configure server firewall.

To add server administrators by using Azure portal

  1. In the portal, for your server, click Analysis Services Admins.

  2. In <servername> - Analysis Services Admins, click Add.

  3. In Add Server Administrators, select user accounts from your Azure AD or invite external users by email address.

    Server Admins in Azure portal

To add server administrators by using SSMS

  1. Right-click the server > Properties.

  2. In Analysis Server Properties, click Security.

  3. Click Add, and then enter the email address for a user or group in your Azure AD.

    Add server administrators in SSMS

PowerShell

Note

We recommend that you use the Azure Az PowerShell module to interact with Azure. See Install Azure PowerShell to get started. To learn how to migrate to the Az PowerShell module, see Migrate Azure PowerShell from AzureRM to Az.

Use New-AzAnalysisServicesServer cmdlet to specify the Administrator parameter when creating a new server.
Use Set-AzAnalysisServicesServer cmdlet to modify the Administrator parameter for an existing server.

REST API

Use Create to specify the asAdministrator property when creating a new server.
Use Update to specify the asAdministrator property when modifying an existing server.

Next steps

Authentication and user permissions
Manage database roles and users
Azure role-based access control (Azure RBAC)