You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
# Step 7: Set managed identity only accessEnable-AzSqlServerActiveDirectoryOnlyAuthentication-ServerName $ServerName-ResourceGroupName $ResourceGroupName#if ($IsProd) {# Step 8: Block public accessSet-AzSqlServer-ServerName $ServerName-PublicNetworkAccess 'disabled'-ResourceGroupName $ResourceGroupName#}
Issue
The intent is to have SQL server only allow Azure AD connections and, for production only, disable public network access.
These features were previously part of the bicep template and had to be removed as part of the SQL server user setup work item.
A deployment script is used to setup managed identity and it needs the ability to connect as SQL admin from Azure (0.0.0.0).
To address this issue we need another deploymentScript to run after SQL setup has been completed to enable these security features. The challenge will be providing enough credentials to the deploymentScript to be able to perform the changes.
The text was updated successfully, but these errors were encountered:
Issue
The intent is to have SQL server only allow Azure AD connections and, for production only, disable public network access.
These features were previously part of the bicep template and had to be removed as part of the SQL server user setup work item.
To address this issue we need another deploymentScript to run after SQL setup has been completed to enable these security features. The challenge will be providing enough credentials to the deploymentScript to be able to perform the changes.
The text was updated successfully, but these errors were encountered: