Using Azure Interactive Authentication
Published 23 January 2020
- To use Azure Active Directory with an Azure SQL Database server, the server needs to be assigned an Azure Active Directory admin
- To register an app with Azure Active Directory, you need to be either an Azure AD admin or a user assigned the Azure AD Application Developer role
Registering SQL Compare and setting permissions
To use interactive authentication to connect to Azure, SQL Compare needs to register as an Azure Active Directory app. Registering SQL Compare will generate an application ID that SQL Compare will need to know to connect.
In the Azure portal, select Azure Active Directory > App registrations > New registration. Enter SQL Compare for the application name and then click on the Register button.
Make a note of the Application ID as this will be required later. Then click on Add a Redirect URI.
Enableas a redirect URI and set Treat application as a public client to Yes. Then save the changes.
Select API permissions > Add a permission.
Select APIs my organization uses > type Azure SQL Database into the search and select Azure SQL Database.
Select Delegated permissions > user_impersonation > Add permissions.
Setting up SQL Compare
In the database connection dialog, select Active Directory universal with MFA authentication (Azure) in the Authentication dropdown, enter your username in the corresponding text box, and paste the Application ID (from the previous section) in the Application ID text box. This will remember the Application ID for future use.