SQL Compare 14

Using Azure Interactive Authentication


  • To use Azure Active Directory with an Azure SQL Database server, the server needs to be assigned an Azure Active Directory admin
  • To register an app with Azure Active Directory, you need to be either an Azure AD admin or a user assigned the Azure AD Application Developer role

Registering SQL Compare and setting permissions

To use interactive authentication to connect to Azure, SQL Compare needs to register as an Azure Active Directory app. Registering SQL Compare will generate an application ID that SQL Compare will need to know to connect.

In the Azure portal, select Azure Active Directory > App registrations > New registration. Enter SQL Compare for the application name and then click on the Register button.

Azure Active Directory app registration dialog

Make a note of the Application ID as this will be required later. Then click on Add a Redirect URI.

Enable  https://login.microsoftonline.com/common/oauth2/nativeclient as a redirect URI and set Treat application as a public client to Yes. Then save the changes.

Select  API permissions > Add a permission.

Select  APIs my organization uses  > type  Azure SQL Database  into the search and select  Azure SQL Database.

Select  Delegated permissions  >  user_impersonation  >  Add permissions.

Setting up SQL Compare

In the database connection dialog, select Active Directory universal with MFA authentication (Azure) in the Authentication dropdown, enter your username in the corresponding text box, and paste the Application ID (from the previous section) in the Application ID text box. This will remember the Application ID for future use.

Didn't find what you were looking for?